Alternatives and similar repositories for pyinvestigate

Users that are interested in pyinvestigate are comparing it to the libraries listed below

• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 6 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆63Updated 11 years ago
• hashtagcyber / bropy
  Basic Anomaly IDS capabilities with Python and Bro
  ☆105Updated 7 years ago
• certtools / intelmq-manager
  IntelMQ Manager is a graphical interface to manage configurations for IntelMQ framework.
  ☆106Updated 2 months ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated 2 weeks ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 4 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆46Updated 6 years ago
• philhagen / ip2geo
  Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses
  ☆102Updated 5 years ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆124Updated 6 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆141Updated 2 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆110Updated 7 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆86Updated 2 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• GreyNoise-Intelligence / pygreynoise
  Python3 library and command line for GreyNoise
  ☆153Updated 2 months ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 5 years ago
• opendns / investigate-examples
  Coding examples for the OpenDNS Investigate API
  ☆24Updated 5 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆176Updated 7 years ago
• certsocietegenerale / event2timeline
  Simple Microsoft Windows sessions event logs visualization
  ☆152Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 4 years ago