Alternatives and similar repositories for awesome-malware-analysis

Users that are interested in awesome-malware-analysis are comparing it to the libraries listed below

• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆112Updated last year
• philhagen / ip2geo
  Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses
  ☆102Updated 6 years ago
• ktsaou / awesome-threat-intelligence
  A curated list of Awesome Threat Intelligence resources
  ☆23Updated 9 years ago
• mikebanks / AbuseIPdbSCAN
  Python Scanner for passing IP addresses and utilizing AbuseIPdb API to find bad IPs
  ☆60Updated last month
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆108Updated last year
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 5 years ago
• pe3zx / mthc
  All-in-one bundle of MISP, TheHive and Cortex
  ☆169Updated 3 years ago
• MISP / MISP-maltego
  Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
  ☆180Updated last year
• TheHive-Project / awesome
  A curated list of awesome things related to TheHive & Cortex
  ☆184Updated 4 years ago
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆155Updated last year
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• bestpractical / rtir
  ☆143Updated 2 months ago
• certtools / intelmq-feeds-documentation
  Cyber Threat Intelligence Feeds
  ☆70Updated last year
• swimlane / trawl
  A utility to trawl phishing domains and attempt to identify phishing kits as well as other malicious activity
  ☆36Updated 4 years ago
• SecurityNik / QRadar---Threat-Intelligence-On-The-Cheap
  Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs
  ☆69Updated 4 years ago
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆147Updated last month
• sophos / solarwinds-threathunt
  Threathunt details for the Solarwinds compromise
  ☆33Updated 4 years ago
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆59Updated 4 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆172Updated 2 years ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated 2 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆50Updated 3 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆97Updated last month
• cocaman / urlhaus
  ☆28Updated 7 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆103Updated 2 months ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆98Updated 9 years ago
• hatRiot / logalyzer
  Auth.log parser
  ☆47Updated 7 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆169Updated 5 years ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆65Updated 8 years ago
• TheHive-Project / CortexDocs
  Documentation of Cortex
  ☆174Updated 2 years ago
• houbbit / haveibeenpwned
  Python script to verify multiple email addresses for pwnage
  ☆68Updated 6 years ago