Alternatives and similar repositories for distinct

Users that are interested in distinct are comparing it to the libraries listed below

• Fallenour / Venator
  Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…
  ☆22Updated 8 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Updated 8 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 7 years ago
• da667 / CircleCity
  Materials from my Circle City Con talk: Fantastic OSINT (and where to find it)
  ☆23Updated 9 years ago
• oneoffdallas / check_ioc
  Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …
  ☆80Updated 8 years ago
• andrewsmhay / BreachNotes
  Various public documents, white-papers, articles, data, analysis, and statistics about breaches and security trends.
  ☆92Updated 6 years ago
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆83Updated 10 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆36Updated 6 years ago
• pinktangent / Endpoint-Testing
  Repository for Endpoint Security Testing
  ☆35Updated 7 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 7 years ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 8 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆56Updated 5 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• UNIT777 / Email2TheHive
  This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
  ☆12Updated 8 years ago
• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆16Updated 6 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆40Updated last year
• 0xd34db33f / gfyp
  Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…
  ☆67Updated 7 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆140Updated 2 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 7 years ago
• JamesHabben / sysmon-queries
  Queries to parse sysmon event log file with microsoft logparser
  ☆58Updated 10 years ago
• certsocietegenerale / yeti
  Your Everyday Threat Intelligence
  ☆22Updated 8 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 6 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• dmb2168 / OAuthHunting
  ☆53Updated 7 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆71Updated 3 years ago
• shellntel-acct / vcr
  Vulnerability Compliance Report Tool used to parse Nessus files into html reports created by SynerComm, Inc.
  ☆167Updated 7 years ago