Alternatives and similar repositories for cowrie-attack:

Users that are interested in cowrie-attack are comparing it to the libraries listed below

• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• swimlane / CLAW
  A packer utility to create and capture DFIR Image for use AWS & Azure
  ☆14Updated 5 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• ShadowHatesYou / whori.sh
  Zone transfers for rwhois
  ☆20Updated 5 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 8 years ago
• mthbernardes / shaggy-rogers
  Scan blob files for sensitive content
  ☆11Updated 2 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated last year
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 7 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 6 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆9Updated 3 months ago
• tedhardyMSFT / EventLogUtilities
  Set of utilities for getting information about Windows Events
  ☆15Updated 6 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• Cymmetria / honeycomb_plugins
  The plugin repository for Honeycomb, the honeypot framework by Cymmetria
  ☆27Updated last year
• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 7 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆26Updated 4 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 5 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• deependresearch / hoard
  Historical Observations of Actionable Reputation Data
  ☆13Updated 6 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated 11 months ago
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• egaus / malicious_url_analysis
  ☆18Updated 6 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• fl0x2208 / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 5 years ago
• PaulSec / SSLBlackList
  (Unofficial) Python API for https://sslbl.abuse.ch/
  ☆11Updated 8 years ago
• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 7 years ago