Alternatives and similar repositories for python-maltiverse

Users that are interested in python-maltiverse are comparing it to the libraries listed below

• 3c7 / aptmap
  A map displaying threat actors from the misp-galaxy
  ☆33Updated 2 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆30Updated 8 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆26Updated 3 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆82Updated last week
• codewatchorg / Burp-Yara-Rules
  Yara rules to be used with the Burp Yara-Scanner extension
  ☆48Updated 3 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆16Updated 6 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated 2 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆40Updated 5 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆79Updated 3 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆103Updated 5 months ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 4 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆41Updated 2 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated 2 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆45Updated 5 years ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated 2 years ago
• toolswatch / pycvss3
  Python API for the CVSS v3
  ☆58Updated 4 years ago
• clong / vagrant-ids
  An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
  ☆23Updated 7 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆45Updated 2 years ago
• CyberMonitor / Security_Collection
  ☆46Updated 8 years ago
• neonprimetime / PhishingKitTracker
  PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @PhishKitTracker on twitter if you find a #threatactoremail in …
  ☆101Updated 3 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 4 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Updated 2 years ago
• passivetotal / python_api
  Python abstract API for PassiveTotal services in the form of libraries and command line utilities.
  ☆86Updated 2 years ago
• Cymmetria / ciscoasa_honeypot
  A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.
  ☆55Updated 7 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆103Updated 3 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆114Updated 6 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆18Updated 6 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆25Updated 5 years ago