Alternatives and similar repositories for SigmaToExcel

Users that are interested in SigmaToExcel are comparing it to the libraries listed below

• frkncelik / Sigma-Rule
  You can access the sigma rules to detect malicious activities. It is organized by Mitre Att&ck categories.
  ☆12Updated 3 years ago
• SamsungLabs / TwiTi
  This is a project of "#Twiti: Social Listening for Threat Intelligence" (TheWebConf 2021)
  ☆171Updated 2 years ago
• Th1ru-M / Windows-Threat-Hunting
  Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine
  ☆22Updated 5 months ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆59Updated 5 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 2 years ago
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated last year
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• BRANDEFENSE / IoC
  ☆22Updated 9 months ago
• fox-it / cobaltstrike-beacon-data
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆125Updated 3 years ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆87Updated 5 months ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 4 years ago
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆137Updated 4 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• mitre-attack / evals_caldera
  A CALDERA plugin for ATT&CK Evaluations Round 1
  ☆33Updated last year
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆24Updated last year
• audibleblink / bothan
  Is this IP a C2 server?
  ☆28Updated 5 years ago
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 5 years ago
• conexioninversa / WOPR
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Updated last year
• hpthreatresearch / iocs
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆29Updated last year
• RedSection / Red-Team-Challenge-Questions
  We publish our challenge questions for everyone.
  ☆94Updated 4 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 2 years ago
• jsecurity101 / Detecting-Process-Injection-Techniques
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆34Updated 5 years ago
• SimoneCagol / sigma-rules-crawler
  ☆31Updated this week
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆49Updated 2 years ago
• tevora-threat / atomic_red_team_gui
  Windows GUI/Execution Engine for Atomic Red Team Atomics
  ☆34Updated 5 years ago
• AhmetPayaslioglu / YaraRules
  ☆21Updated 2 years ago
• ByteSecLabs / ja3-ja3s-combo
  High fidelity JA3 & JA3S combinations for known botnets and alike
  ☆11Updated 6 years ago
• mitre / sandcat
  A CALDERA plugin
  ☆66Updated 2 months ago
• picuslabs / picuslabs
  Picus Labs
  ☆44Updated 4 years ago
• adava / CnCHunter
  This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.
  ☆42Updated 10 months ago