Alternatives and similar repositories for EventSight

Users that are interested in EventSight are comparing it to the libraries listed below

• mrwadams / otx-mcp
  ☆18Updated 8 months ago
• infosecn1nja / TTPMapper
  TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…
  ☆48Updated 6 months ago
• OSTEsayed / OSTE-MalStatWare
  MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…
  ☆31Updated last year
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆69Updated last year
• dobin / DetonatorAgent
  Detonate malware on VMs and get logs & detection status
  ☆73Updated this week
• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆49Updated 9 months ago
• AI-Voodoo / Red_Reaper_v2
  Stage 1: Sensitive Email/Chat Classification for Adversary Agent Emulation (espionage). This project is meant to extend Red Reaper v1 whi…
  ☆42Updated last year
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆53Updated 2 years ago
• joeavanzato / velociraptor-timeline-creator
  VTC - Velociraptor Timeline Creator
  ☆19Updated last year
• chryzsh / cloud-hacking-labs
  A not-curated list of cloud hacking labs
  ☆26Updated last year
• Atomics-on-A-Friday / Emulation-Tools
  ☆31Updated 2 years ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆28Updated 9 months ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆41Updated 10 months ago
• joeavanzato / crackdown
  Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
  ☆17Updated 2 years ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆15Updated 5 years ago
• AI-Voodoo / BugOut
  AI-Powered, Local Pythonic Coding Agent 🐞💻
  ☆24Updated 9 months ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆45Updated 2 years ago
• nyxgeek / cloudkicker
  self-hosted Azure OSINT tool
  ☆31Updated 5 months ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated last year
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated 5 months ago
• infosecn1nja / Invoke-AtomicAssessment
  Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.
  ☆43Updated 11 months ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 3 years ago
• elementalsouls / DumpLSASS
  ☆33Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• closed-systems / strangerstrings
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆52Updated 3 months ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆84Updated last year
• DefensiveOrigins / DO-LAB
  ☆49Updated last week
• sandmaxprime / VagrantMalwareWin10VM
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Updated 4 years ago
• jalacloud / mcp-cti
  Repo for experimenting and testing MCP server builds for CTI-related research.
  ☆27Updated 7 months ago
• DarwinSec / DEFCON-KQL-KUNG-FU-22
  ☆18Updated 3 years ago