Alternatives and similar repositories for CICAT:

Users that are interested in CICAT are comparing it to the libraries listed below

• cyentific-rni / SAG
  An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
  ☆23Updated 2 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• oasis-open / cti-stix-generator
  OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…
  ☆40Updated 9 months ago
• tropChaud / Cyber-Adversary-Heatmaps
  Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.
  ☆34Updated 2 years ago
• mnemonic-no / provreq
  Adversary Emulation Planner
  ☆38Updated 6 months ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 4 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆61Updated 9 months ago
• smartgridadsc / Goose-protocol-parser-for-Zeek-IDS
  ☆21Updated 2 years ago
• cutaway-security / ICSPcapViz
  A packet capture visualizer for industrial control networks.
  ☆51Updated last year
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated 7 months ago
• MDudek-ICS / awesome-industrial-control-system-security
  A curated list of resources related to Industrial Control System (ICS) security.
  ☆21Updated 3 years ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• cyentific-rni / stix2.1-coa-playbook-extension
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆22Updated last year
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• vz-risk / flow
  Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)
  ☆43Updated 2 years ago
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆27Updated 8 months ago
• cutaway-security / IACS_STAR_Methodology
  A risk rating calculation methodology that uses the OWASP Risk Rating Methodology as a basis.
  ☆27Updated 4 months ago
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆14Updated 3 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆53Updated 6 months ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated last week
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆42Updated last year
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆31Updated last year
• cutaway-security / cutsec_presentations
  Presentation Slides and Resources
  ☆15Updated 7 months ago
• center-for-threat-informed-defense / sightings_ecosystem
  Sightings Ecosystem gives cyber defenders visibility into what adversaries actually do in the wild. With your help, we are tracking MITRE…
  ☆34Updated 9 months ago
• opencybersecurityalliance / oca-iob
  Augmentation to Machine Readable CTI
  ☆27Updated last month