Alternatives and similar repositories for CISA_Enrichment:

Users that are interested in CISA_Enrichment are comparing it to the libraries listed below

• jgamblin / cve.icu
  CVE.ICU code.
  ☆39Updated this week
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆49Updated 7 months ago
• akamai / luda
  Malicious actors often reuse code to deploy their malware, phishing website or CNC server. As a result, similiaries can be found on URLs …
  ☆75Updated last year
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆69Updated 3 years ago
• tropChaud / webpage2attack
  Generate portable TTP intelligence from a web-based report
  ☆30Updated 2 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• sourcefrenchy / spotexfil
  A simple way to exfiltrate data using spotify API
  ☆18Updated last week
• Karneades / SigmaFilterCheck
  Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)
  ☆15Updated 4 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated 2 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 4 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆33Updated 3 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆16Updated 4 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆54Updated 7 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆75Updated last year
• NVISOsecurity / nviso-cti
  ☆41Updated 10 months ago
• daniel-infosec / wikipedia-c2
  POC for utilizing wikipedia API for Command and Control
  ☆29Updated 2 years ago
• projectdiscovery / nvd
  Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds
  ☆25Updated last year
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated last year
• SIFalcon / Detection
  ☆22Updated last year
• sourcefrenchy / goqrexfil
  A mini project to exfiltrate data via QR codes
  ☆19Updated 2 months ago
• SCS-Labs / TheWatchList
  Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
  ☆15Updated 3 years ago
• asaurusrex / MachoBins
  ☆15Updated 2 years ago
• jgamblin / monthlyCVEStats
  Monthly CVE Stats
  ☆37Updated 2 weeks ago
• redcanaryco / public-research
  Public repository for Red Canary Research
  ☆37Updated 4 years ago
• huydhn / certstream-analytics
  certstream + analytics
  ☆10Updated 5 years ago
• qeeqbox / octopus
  Pure Honeypots with an automated bash script
  ☆20Updated 3 years ago