Alternatives and similar repositories for lupo

Users that are interested in lupo are comparing it to the libraries listed below

• StevenD33 / Lab-DFIR-SOC
  ☆68Updated 4 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆114Updated 3 years ago
• pr0xylife / Emotet
  IOC Collection 2022
  ☆57Updated 2 years ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆54Updated 4 years ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆119Updated 10 months ago
• malvuln / Adversary3
  Malware vulnerability intel tool for third-party attackers
  ☆122Updated 9 months ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆169Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 2 years ago
• NVISOsecurity / nviso-cti
  ☆43Updated last month
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 3 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• albertzsigovits / malware-notes
  Notes and IoCs of fresh malware
  ☆59Updated last year
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆157Updated 2 years ago
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆43Updated 3 years ago
• CronUp / Malware-IOCs
  ☆96Updated 3 months ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 2 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 3 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆97Updated 2 years ago
• HuskyHacks / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆38Updated 3 years ago
• Ud0g-Py / Killing-The-Bear
  Repository and archive for Killing The Bear Gitbook
  ☆83Updated 2 years ago
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• pbssubhash / h0neytr4p
  Easy to configure Honeypot for Blue Team
  ☆42Updated 2 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Updated 3 years ago
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• MazX0p / ThreatHound
  ☆160Updated last year
• pr0xylife / IcedID
  ☆33Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆74Updated 3 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆102Updated last year