Alternatives and similar repositories for GeoLogonalyzer:

Users that are interested in GeoLogonalyzer are comparing it to the libraries listed below

• mvelazc0 / Oriana
  Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…
  ☆179Updated 3 years ago
• CrowdStrike / falcon-orchestrator
  CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities
  ☆186Updated last year
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆167Updated 4 years ago
• CERT-W / certitude
  The Seeker of IOC
  ☆129Updated 4 years ago
• THIBER-ORG / userline
  Query and report user logons relations from MS Windows Security Events
  ☆242Updated 6 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆174Updated 7 years ago
• aboutsecurity / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆116Updated 6 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆140Updated last year
• TKCERT / mail-security-tester
  A testing framework for mail security and filtering solutions.
  ☆244Updated last year
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 8 years ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆90Updated 7 years ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆175Updated 4 years ago
• sroberts / cacador
  Indicator Extractor
  ☆139Updated 6 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 6 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆289Updated 7 years ago
• LogRhythm-Labs / PIE
  The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
  ☆180Updated 5 years ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆336Updated 2 years ago
• unfetter-discover / unfetter-analytic
  Main Build directory
  ☆179Updated 5 years ago
• GreyNoise-Intelligence / api.greynoise.io
  Code + documentation for the public GreyNoise API
  ☆314Updated 4 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆238Updated 3 years ago
• Tripwire / TARDIS
  Threat Analysis, Reconnaissance, and Data Intelligence System
  ☆125Updated 9 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆108Updated 7 years ago
• Invoke-IR / ACE
  Automated, Collection, and Enrichment Platform
  ☆325Updated 5 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆245Updated 3 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆144Updated 8 years ago
• sandialabs / scot
  Sandia Cyber Omni Tracker (SCOT)
  ☆246Updated 5 months ago
• SecurityRiskAdvisors / TALR
  Threat Alert Logic Repository
  ☆92Updated 6 years ago
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆186Updated 2 years ago
• PUNCH-Cyber / YaraGuardian
  Django web interface for managing Yara rules
  ☆192Updated 6 years ago