Alternatives and similar repositories for mock:

Users that are interested in mock are comparing it to the libraries listed below

• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 4 years ago
• mitre / gocat
  Simplified go-cat agent for caldera
  ☆10Updated last year
• mitre / compass
  ☆14Updated last year
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 5 months ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• counteractive / incident-response-collector
  ☆16Updated 4 years ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆7Updated 9 months ago
• mitre / caldera-agent
  ☆20Updated 7 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆16Updated 3 years ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 7 years ago
• mitre / access
  A CALDERA plugin
  ☆21Updated last year
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• ReconInfoSec / adversary-emulation-map
  Creates an ATT&CK Navigator map of an Adversary Emulation Plan
  ☆17Updated 3 years ago
• SCS-Labs / TheWatchList
  Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
  ☆16Updated 3 years ago
• c2defense / windows-event-collection
  Subscriptions to collect Windows Event Logs mapped to the MITRE ATT&CK model
  ☆12Updated 4 years ago
• rabobank-cdc / dettect-editor
  DeTT&CT Editor
  ☆12Updated 3 months ago
• HASecuritySolutions / WECComputerGroupMgmt
  ☆11Updated 3 years ago
• mitre / adversary
  A CALDERA plugin
  ☆17Updated 4 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆30Updated last year
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 9 years ago
• swimlane / CLAW
  A packer utility to create and capture DFIR Image for use AWS & Azure
  ☆15Updated 5 years ago
• randomaccess3 / 4n6_stuff
  Git for me to put all my forensics stuff
  ☆21Updated 2 months ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 5 years ago
• qeeqbox / octopus
  Pure Honeypots with an automated bash script
  ☆20Updated 3 years ago
• voxpupuli / puppet-misp
  This module installs and configures MISP (Malware Information Sharing Platform)
  ☆13Updated last week