Alternatives and similar repositories for panwdbl:

Users that are interested in panwdbl are comparing it to the libraries listed below

• oneoffdallas / check_ioc
  Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …
  ☆77Updated 7 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• TravisFSmith / MyBroElk
  Scripts for Bro IDS and ELK Stack
  ☆56Updated 9 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• rocknsm / rock-dashboards
  Dashboards and loader for ROCK NSM dashboards
  ☆48Updated 2 years ago
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆153Updated last year
• coolacid / logstash-filter-virustotal
  Virustotal Lookup filter for Logstash
  ☆16Updated 7 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Updated 7 years ago
• TKCERT / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆17Updated 3 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• MotiBa / Sysmon
  Sysmon configuration
  ☆66Updated 6 years ago
• tcw3bb / ISC_Posts
  Files from my Storm Center Articles
  ☆17Updated last year
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆18Updated 3 months ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 5 months ago
• BinaryDefense / auto-ossec
  ☆140Updated 9 months ago
• hardwaterhacker / CrazyParser
  Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.
  ☆51Updated 9 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• brad-anton / brand_watch
  Use OpenDNS's investigate API to find newly observed domains which match a brand or string
  ☆17Updated 8 years ago
• lruppert / bro-scripts
  Utilities and scripts for bro-ids
  ☆22Updated 11 years ago
• sethhall / bro-apt1
  This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.
  ☆47Updated 11 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• initconf / brocon-15
  brocon-15 scripts
  ☆13Updated 7 years ago