Alternatives and similar repositories for kestrel-jupyter

Users that are interested in kestrel-jupyter are comparing it to the libraries listed below

• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆17Updated last year
• opencybersecurityalliance / documentation
  OCA-wide documentation shared by all sub-projects and repositories
  ☆33Updated last year
• atc-project / react-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆17Updated 5 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• center-for-threat-informed-defense / sightings_ecosystem
  Sightings Ecosystem gives cyber defenders visibility into what adversaries actually do in the wild. With your help, we are tracking MITRE…
  ☆38Updated 7 months ago
• Velocidex / eql2vql
  Transform EQL detection rules to VQL artifacts
  ☆12Updated 4 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• OTRF / openhunt
  ☆35Updated 4 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated 2 years ago
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆23Updated 6 years ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 6 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆74Updated 3 years ago
• neu5ron / es_stk
  ☆13Updated 3 years ago
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆20Updated 5 years ago
• stahler / QRadar
  Using QRadar API
  ☆20Updated 7 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• socprime / socprime_sigma
  List of sigma for a variety of threats for multiple log sources.
  ☆13Updated 7 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆36Updated 3 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated this week
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆36Updated 2 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 3 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• weslambert / securityonion-misp
  ☆37Updated 5 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆54Updated 2 years ago