Alternatives and similar repositories for networkforensics

Users that are interested in networkforensics are comparing it to the libraries listed below

• TheHive-Project / DigitalShadows2TH
  DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
  ☆39Updated 6 years ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆125Updated 5 years ago
• TheHive-Project / Zerofox2TH
  Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
  ☆40Updated 5 years ago
• corelight / threat-hunting-guide
  ☆53Updated 3 years ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆76Updated 2 years ago
• SecurityNik / SUWtHEh-
  Learning by Practising - Hack & Detect - A Practical Guide to Hacking and its Detection via network forensics
  ☆78Updated 2 years ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆132Updated last year
• P3t3rp4rk3r / Threat_Intelligence
  Threat-Intelligence Feeds & Tools & Frameworks
  ☆220Updated last year
• corelight / zeek-cheatsheets
  Zeek Log Cheatsheets
  ☆297Updated last month
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆118Updated 2 years ago
• cutaway-security / chaps
  Configuration Hardening Assessment PowerShell Script (CHAPS)
  ☆184Updated last month
• mayhemiclabs / weblabyrinth
  A system that creates a bogus web structure to entrap and delay web scanners
  ☆61Updated 4 years ago
• dhoelzer / ShowMeThePackets
  Useful network monitoring, analysis, and active response tools used or mentioned in the SANS SEC503 course (https://www.sans.org/course/i…
  ☆237Updated 8 months ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆91Updated last year
• Security-Onion-Solutions / securityonion-docs
  ☆90Updated this week
• cisagov / ICSNPP
  Industrial Control Systems Network Protocol Parsers
  ☆179Updated 2 weeks ago
• marcurdy / dfir-toolset
  Dump of organized knowledge on DFIR
  ☆135Updated 3 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆45Updated 3 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 5 years ago
• MarkBaggett / freq
  This is a repository for freq.py and freq_server.py
  ☆210Updated 5 years ago
• cisagov / ACID
  ☆72Updated 5 months ago
• BushidoUK / CTI-Lexicon
  Dictionary of CTI-related acronyms, terms, and jargon
  ☆144Updated last year
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆241Updated 4 years ago
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆35Updated 7 months ago
• mosse-security / threat-hunting-samples
  Three datasets to practice Threat Hunting against.
  ☆46Updated last year
• dfircheatsheet / dfircheatsheet.github.io
  ☆67Updated this week
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆56Updated 5 years ago
• target / Threat-Hunting
  Jupyter notebooks for threat hunting
  ☆59Updated 5 months ago
• activecm / threat-tools
  Tools for simulating threats
  ☆193Updated last year
• AJMartel / IRTriage
  Incident Response Triage - Windows Evidence Collection for Forensic Analysis
  ☆134Updated 9 years ago