opencybersecurityalliance/kestrel-analytics external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

opencybersecurityalliance/kestrel-analytics

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/opencybersecurityalliance/kestrel-analytics)

Close

opencybersecurityalliance / kestrel-analyticsView on GitHubMore

• External links
• Readme badge

This repository hosts community contributed Kestrel analytics

☆18May 28, 2024Updated last year

Alternatives and similar repositories for kestrel-analytics

Users that are interested in kestrel-analytics are comparing it to the libraries listed below

• opencybersecurityalliance / kestrel-huntbook

  View on GitHub
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆37Jan 2, 2024Updated 2 years ago
• opencybersecurityalliance / kestrel-jupyter

  View on GitHub
  Kestrel Jupyter Notebook Kernel
  ☆10Oct 19, 2023Updated 2 years ago
• C0ldstudy / Argus

  View on GitHub
  [S&P 2024] Understanding and Bridging the Gap Between Unsupervised Network Representation Learning and Security Analytics.
  ☆17Apr 25, 2025Updated 10 months ago
• opencybersecurityalliance / firepit

  View on GitHub
  Firepit - STIX Columnar Storage
  ☆18Jun 5, 2024Updated last year
• WithSecureLabs / lazarus-sigma-rules

  View on GitHub
  ☆19Oct 23, 2020Updated 5 years ago
• opencybersecurityalliance / kestrel-lang

  View on GitHub
  Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
  ☆324Sep 27, 2024Updated last year
• opencybersecurityalliance / PACE

  View on GitHub
  Posture Attribute Collection and Evaluation
  ☆23Jun 20, 2023Updated 2 years ago
• corelight / got_zoom

  View on GitHub
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Apr 15, 2020Updated 5 years ago
• nccgroup / JA3_outlier

  View on GitHub
  Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
  ☆16Aug 10, 2022Updated 3 years ago
• ubc-provenance / orthrus

  View on GitHub
  Orthrus PIDS (USENIX Sec'25) official code
  ☆34Feb 11, 2026Updated 3 weeks ago
• lanl / pyCP_APR

  View on GitHub
  CP-APR Tensor Decomposition with PyTorch backend. pyCP_APR can perform non-negative Poisson Tensor Factorization on GPU, and includes an …
  ☆18Dec 18, 2023Updated 2 years ago
• MII-Cybersec / Threat-Hunting-Notebook

  View on GitHub
  Collection of Jupyter Notebook for Threat Hunting and Blue Team Purposes
  ☆22Jun 15, 2022Updated 3 years ago
• Cyb3rWard0g / azure-loganalytics-api-clients

  View on GitHub
  A few scripts I put together to send and receive data from an Azure Log Analytics workspace leveraging the Azure Monitor HTTP Data Collec…
  ☆22May 22, 2023Updated 2 years ago
• opencybersecurityalliance / stix-shifter

  View on GitHub
  This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return resul…
  ☆261Feb 20, 2026Updated last week
• lucky-luk3 / Infosec_Notebooks

  View on GitHub
  ☆20May 10, 2023Updated 2 years ago
• paulveillard / cybersecurity-aws-tools

  View on GitHub
  An ongoing collection of of AWS tools, frameworks, libraries, learning tutorials for InfoSec and security professionals
  ☆23Dec 16, 2021Updated 4 years ago
• sisoc-tokyo / Real-timeDetectionAD_journal

  View on GitHub
  ☆24Mar 19, 2020Updated 5 years ago
• cado-security / CloudAndContainerCompromiseSimulator

  View on GitHub
  Simulates a compromise in a cloud and container environment
  ☆34Dec 18, 2024Updated last year
• swisscom / PowerSponse

  View on GitHub
  PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.
  ☆40Mar 18, 2022Updated 3 years ago
• jun-zeng / ShadeWatcher

  View on GitHub
  SHADEWATCHER: Recommendation-guided Cyber Threat Analysis using System Audit Records, Oakland'22
  ☆83Jun 6, 2023Updated 2 years ago
• fkie-cad / amides

  View on GitHub
  An Adaptive Misuse Detection System
  ☆46Nov 4, 2024Updated last year
• oussama-rahali / Network-Shredder

  View on GitHub
  Network Shredder IDS
  ☆11Aug 14, 2024Updated last year
• mdsecactivebreach / morphHTA

  View on GitHub
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆10Jun 3, 2017Updated 8 years ago
• Neo23x0 / YARA-rules

  View on GitHub
  Some YARA rules i will add from time to time
  ☆12May 31, 2019Updated 6 years ago
• juju4 / ansible-mhn

  View on GitHub
  Modern Honey Network deployment with ansible
  ☆12Jun 4, 2022Updated 3 years ago
• COSSAS / dgad

  View on GitHub
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆45Aug 3, 2024Updated last year
• nil0x42 / zaproxy-scripts

  View on GitHub
  A collection of personal ZAP scripts
  ☆13Apr 10, 2023Updated 2 years ago
• SecurityRiskAdvisors / TALR

  View on GitHub
  Threat Alert Logic Repository
  ☆93Feb 7, 2019Updated 7 years ago
• cipher387 / hashtags_and_keywords_social_media_quick_search

  View on GitHub
  Tool of the buttons for quick search keywords ans hashtags in 70 different social media platforms
  ☆46Sep 7, 2023Updated 2 years ago
• ALFA-group / BRON

  View on GitHub
  "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…
  ☆105Nov 9, 2025Updated 3 months ago
• Peripli / specification

  View on GitHub
  Service Manager Specification
  ☆11Nov 9, 2020Updated 5 years ago
• reverseame / modex

  View on GitHub
  Volatility 3 plugins to extract a module as complete as possible
  ☆12Jun 13, 2023Updated 2 years ago
• mikeroyal / VMware-Guide

  View on GitHub
  VMware Guide
  ☆14Dec 14, 2021Updated 4 years ago
• turbot / steampipe-plugin-steampipe

  View on GitHub
  Use SQL to instantly query plugin metadata from the Steampipe Hub. Open source CLI. No DB required.
  ☆12Feb 9, 2026Updated 3 weeks ago
• murchie85 / cyber_compendium

  View on GitHub
  A one stop shop for all cyber tooling, frameworks and hacking methodologies
  ☆11Jul 25, 2021Updated 4 years ago
• maurapintor / unica_mlsec_labs

  View on GitHub
  ☆11Dec 17, 2024Updated last year
• APT-Hunter / APTHunter

  View on GitHub
  ☆10Aug 27, 2022Updated 3 years ago
• tweedge / tldr

  View on GitHub
  TLD records archive. Revisiting the original TLDR project by mandatoryprogrammer, on the hunt for more root nameserver changes.
  ☆11Dec 4, 2022Updated 3 years ago
• forensicmatt / libtsk-rs

  View on GitHub
  Wrapper for TSK (Sleuth Kit) Bindings
  ☆12Jan 10, 2023Updated 3 years ago