Alternatives and similar repositories for mihari:

Users that are interested in mihari are comparing it to the libraries listed below

• ail-project / ail-framework
  AIL framework - Analysis Information Leak framework
  ☆717Updated this week
• thalesgroup-cert / Watcher
  Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
  ☆906Updated last week
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆856Updated last year
• Neo23x0 / munin
  Online hash checker for Virustotal and other services
  ☆824Updated 3 weeks ago
• cyb3rfox / Aurora-Incident-Response
  Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
  ☆898Updated last year
• scythe-io / purple-team-exercise-framework
  Purple Team Exercise Framework
  ☆693Updated last year
• DFIRKuiper / Kuiper
  Digital Forensics Investigation Platform
  ☆812Updated 6 months ago
• ch33r10 / EnterprisePurpleTeaming
  Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
  ☆647Updated last year
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆498Updated 7 months ago
• stuhli / awesome-event-ids
  Collection of Event ID ressources useful for Digital Forensics and Incident Response
  ☆611Updated 9 months ago
• lucky-luk3 / Grafiki
  Threat Hunting tool about Sysmon and graphs
  ☆331Updated last year
• ashemery / LinuxForensics
  Everything related to Linux Forensics
  ☆694Updated last year
• spaceraccoon / manuka
  A modular OSINT honeypot for blue teamers
  ☆333Updated last year
• A3sal0n / CyberThreatHunting
  A collection of resources for Threat Hunters
  ☆880Updated 6 months ago
• captainGeech42 / ransomwatch
  Ransomware leak site monitoring
  ☆312Updated 3 years ago
• mthcht / ThreatHunting-Keywords
  Awesome list of keywords and artifacts for Threat Hunting sessions
  ☆559Updated last month
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆359Updated this week
• wagga40 / Zircolite
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆707Updated last week
• executemalware / Malware-IOCs
  ☆515Updated 6 months ago
• cyberdefenders / DetectionLabELK
  DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
  ☆553Updated 3 years ago
• AndrewRathbun / DFIRMindMaps
  A repository of DFIR-related Mind Maps geared towards the visual learners!
  ☆518Updated 2 years ago
• cybercdh / kitphishr
  A tool designed to hunt for Phishing Kit source code
  ☆221Updated 2 years ago
• atenreiro / opensquat
  The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonati…
  ☆774Updated 9 months ago
• MISP / misp-training
  MISP trainings, threat intel and information sharing training materials with source code
  ☆405Updated 2 months ago
• sophoslabs / IoCs
  Sophos-originated indicators-of-compromise from published reports
  ☆577Updated 2 weeks ago
• redhuntlabs / RedHunt-OS
  Virtual Machine for Adversary Emulation and Threat Hunting
  ☆1,267Updated 2 months ago
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆584Updated 9 months ago
• atc-project / atc-react
  A knowledge base of actionable Incident Response techniques
  ☆636Updated 2 years ago
• sroberts / awesome-iocs
  A collection of sources of indicators of compromise.
  ☆849Updated 6 months ago
• Neo23x0 / vti-dorks
  Awesome VirusTotal Intelligence Search Queries
  ☆331Updated last year