Alternatives and similar repositories for pyinvestigate

Users that are interested in pyinvestigate are comparing it to the libraries listed below

• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 3 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 11 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• certtools / intelmq-manager
  IntelMQ Manager is a graphical interface to manage configurations for IntelMQ framework.
  ☆105Updated 3 months ago
• opendns / og-miner
  OpenDNS Graph Miner
  ☆45Updated 8 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆81Updated 9 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆122Updated 4 years ago
• certsocietegenerale / event2timeline
  Simple Microsoft Windows sessions event logs visualization
  ☆152Updated 3 years ago
• rjhansen / nsrllookup
  Checks with NSRL RDS servers looking for for hash matches
  ☆114Updated 4 years ago
• CIRCL / url-abuse
  URL Abuse - A Versatile Software for URL review, analysis and black-list reporting
  ☆143Updated 2 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆175Updated 7 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆77Updated last year
• 0xd34db33f / gfyp
  Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…
  ☆66Updated 7 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆144Updated 8 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• brianwarehime / otx_transforms
  Transforms for the AlienVault OTX service
  ☆39Updated 8 years ago
• mitre / caret
  CARET - A tool for viewing cyber analytic relationships
  ☆55Updated 5 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆86Updated last year