Alternatives and similar repositories for TMInfosec

Users that are interested in TMInfosec are comparing it to the libraries listed below

• jshlbrd / threat-hunting-pocket-guide
  pocket guide for core threat hunting concepts
  ☆23Updated 5 years ago
• lprat / static_file_analysis
  Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
  ☆50Updated last year
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated last year
• P4T12ICK / Sigma-Rule-Repository
  Sigma Detection Rule Repository
  ☆88Updated 4 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆49Updated 8 months ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆86Updated 2 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆44Updated last year
• weslambert / securityonion-misp
  ☆35Updated 4 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• ashwin-patil / threat-hunting-with-notebooks
  Repository with Sample threat hunting notebooks on Security Event Log Data Sources
  ☆63Updated 2 years ago
• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 3 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆37Updated 7 months ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆57Updated this week
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆59Updated 5 years ago
• jeFF0Falltrades / YARA-Signatures
  A collection of my public YARA signatures for various malware families
  ☆29Updated 8 months ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆77Updated 2 years ago
• DCSO / MISP-dockerized
  ☆33Updated 5 years ago
• DearBytes / Opensource-Endpoint-Monitoring
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆34Updated 5 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆102Updated 2 weeks ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 2 years ago
• Insikt-Group / Research
  Research indicators and detection rules
  ☆66Updated last year
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 5 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago