Alternatives and similar repositories for GeoLogonalyzer

Users that are interested in GeoLogonalyzer are comparing it to the libraries listed below

• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆177Updated 4 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆169Updated 5 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆140Updated 2 years ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆92Updated 8 years ago
• certsocietegenerale / event2timeline
  Simple Microsoft Windows sessions event logs visualization
  ☆156Updated 3 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆183Updated 2 years ago
• CIRCL / url-abuse
  URL Abuse - A Versatile Software for URL review, analysis and black-list reporting
  ☆148Updated 3 years ago
• mvelazc0 / Oriana
  Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…
  ☆177Updated 4 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆179Updated 8 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• CERT-W / certitude
  The Seeker of IOC
  ☆131Updated 5 years ago
• SecurityRiskAdvisors / TALR
  Threat Alert Logic Repository
  ☆93Updated 7 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 4 years ago
• THIBER-ORG / userline
  Query and report user logons relations from MS Windows Security Events
  ☆243Updated 7 years ago
• sroberts / cacador
  Indicator Extractor
  ☆141Updated 7 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆150Updated 8 years ago
• xme / toolbox
  Miscelaneous useful scripts for my day to day projects
  ☆123Updated 5 years ago
• JPCERTCC / DetectLM
  Detecting Lateral Movement with Machine Learning
  ☆139Updated 8 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆71Updated 8 years ago
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆282Updated 2 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 6 years ago
• LogRhythm-Labs / PIE
  The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
  ☆180Updated 5 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 4 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆291Updated 8 years ago
• TKCERT / mail-security-tester
  A testing framework for mail security and filtering solutions.
  ☆245Updated 2 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 5 years ago
• 0xd34db33f / gfyp
  Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…
  ☆67Updated 7 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆98Updated 9 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆111Updated 7 years ago