Alternatives and similar repositories for distinct

Users that are interested in distinct are comparing it to the libraries listed below

• Fallenour / Venator
  Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…
  ☆21Updated 8 years ago
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Updated 7 years ago
• andrewsmhay / BreachNotes
  Various public documents, white-papers, articles, data, analysis, and statistics about breaches and security trends.
  ☆92Updated 6 years ago
• oneoffdallas / check_ioc
  Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …
  ☆80Updated 7 years ago
• dmb2168 / OAuthHunting
  ☆53Updated 7 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• TKCERT / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆17Updated 4 years ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 8 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆109Updated 7 years ago
• dhoelzer / AuditcastsScripts
  Handy scripts developed and discussed on http://auditcasts.com
  ☆19Updated 6 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆69Updated 2 years ago
• pinktangent / Endpoint-Testing
  Repository for Endpoint Security Testing
  ☆35Updated 7 years ago
• Kathayra / threathuntingmaturitymodel
  Build your own threat hunting maturity model
  ☆11Updated 7 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆36Updated 6 years ago
• 0xd34db33f / gfyp
  Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…
  ☆67Updated 7 years ago
• da667 / CircleCity
  Materials from my Circle City Con talk: Fantastic OSINT (and where to find it)
  ☆23Updated 9 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• rev10d / 504vsa
  504 VSAgent
  ☆24Updated 7 years ago
• jobroche / Pastepwnd
  Identify compromised domains or emails. A python based HIBP and HackedEmails wrapper
  ☆38Updated 6 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆43Updated 9 years ago
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated last year
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆82Updated 9 years ago
• LUTECH-TMS-CERT / EHAT-NG
  Lutech TMS EHAT-NG
  ☆14Updated 8 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆42Updated 6 years ago
• mutedmouse / ta-volatility
  Technical add-on to ingest json formatted volatility memory analysis plugin outputs
  ☆13Updated 7 years ago