Alternatives and similar repositories for dumbpig

Users that are interested in dumbpig are comparing it to the libraries listed below

• DCSO / MISP-dockerized
  ☆34Updated 5 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆73Updated 5 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆69Updated 4 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆104Updated 4 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 4 years ago
• PUNCH-Cyber / YaraGuardian
  Django web interface for managing Yara rules
  ☆197Updated 7 years ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆33Updated last month
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 4 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆122Updated 4 years ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆94Updated 7 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆103Updated 5 years ago
• mandiant / ioc_writer
  ☆206Updated 2 years ago
• Cisco-Talos / file2pcap
  ☆174Updated 4 years ago
• stephenbrannon / IOCextractor
  IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
  ☆134Updated 9 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆75Updated last year
• criticalstack / bro-scripts
  ☆72Updated 4 years ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated 2 years ago
• EmergingThreats / et-luajit-scripts
  ☆75Updated 3 years ago
• sidallocation / sidallocation.org
  ☆15Updated 10 months ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆107Updated last year
• fireeye / OpenIOC_1.1
  ☆135Updated 4 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• fatemabw / kyd
  DHCP Fingerprinting
  ☆31Updated 5 years ago
• ctxis / cbrcli
  Command line interface to Carbon Black Response
  ☆38Updated 5 years ago
• sooshie / bro-scripts
  Various Bro scripts
  ☆96Updated 9 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆95Updated 4 years ago
• egaus / MaliciousMacroBot
  ☆153Updated 7 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆82Updated 7 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 5 years ago
• secureworks / aristotle
  ☆38Updated last year