Alternatives and similar repositories for dnssinkholelist

Users that are interested in dnssinkholelist are comparing it to the libraries listed below

• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 8 years ago
• gburkle / Stalker
  Threat Intel and Incident Reponse
  ☆10Updated 6 years ago
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 8 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 6 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 4 years ago
• chaoticmachinery / mass_triage_tools
  Mass Triage Tools
  ☆20Updated 3 months ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆15Updated 9 years ago
• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 7 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆9Updated 6 months ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• fl0x2208 / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• weslambert / securityonion-strelka
  ☆13Updated 5 years ago
• CERT-Bund / misp-warninglists-analyzer
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Updated 7 years ago
• mohlcyber / MISP-STIX-ESM
  Exports MISP events to STIX and ingest into McAfee ESM
  ☆15Updated 5 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• idiom / IRScripts
  Incident Response Scripts
  ☆30Updated 5 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 9 years ago
• sooshie / scrape_pdf
  Python script to pull various IOCs from PDFs
  ☆15Updated 10 years ago
• thnyheim / misp2bro
  Python script that gets IOC from MISP and converts it into BRO intel files.
  ☆13Updated 9 years ago
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆22Updated 6 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago