Alternatives and similar repositories for CISA_Enrichment

Users that are interested in CISA_Enrichment are comparing it to the libraries listed below

• jgamblin / cve.icu
  CVE.ICU code.
  ☆42Updated this week
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆51Updated last week
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• cyentific-rni / SAG
  An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
  ☆23Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• tropChaud / webpage2attack
  Generate portable TTP intelligence from a web-based report
  ☆31Updated 2 years ago
• akamai / luda
  Malicious actors often reuse code to deploy their malware, phishing website or CNC server. As a result, similiaries can be found on URLs …
  ☆75Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆73Updated 3 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 4 months ago
• MALWARE-ATLAS / ATLAS
  ATLAS - Malware Analysis Description
  ☆21Updated 2 years ago
• threathunters-io / QLOG
  Windows Security Logging
  ☆43Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆69Updated 3 years ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• SCS-Labs / TheWatchList
  Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
  ☆16Updated 4 years ago
• ppt0 / easyhunting
  Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way
  ☆18Updated 3 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 11 months ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆33Updated 3 years ago
• redcanaryco / public-research
  Public repository for Red Canary Research
  ☆37Updated 4 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• qeeqbox / octopus
  Pure Honeypots with an automated bash script
  ☆20Updated 3 years ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• tenable / audit_files
  Nessus Audit files
  ☆33Updated 2 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆66Updated 3 years ago
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• ail-project / Similarius
  Similarius is a Python library to compare web page and evaluate the level of similarity.
  ☆19Updated 2 weeks ago