Alternatives and similar repositories for pyinvestigate

Users that are interested in pyinvestigate are comparing it to the libraries listed below

• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• philhagen / ip2geo
  Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses
  ☆101Updated 5 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 6 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 11 years ago
• certtools / intelmq-manager
  IntelMQ Manager is a graphical interface to manage configurations for IntelMQ framework.
  ☆105Updated 4 months ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated 3 weeks ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆141Updated 2 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• opensourcesec / Forager
  Multithreaded threat Intelligence gathering built with Python3
  ☆175Updated 7 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 3 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 5 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆86Updated last year
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• CIRCL / url-abuse
  URL Abuse - A Versatile Software for URL review, analysis and black-list reporting
  ☆145Updated 2 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• opendns / investigate-examples
  Coding examples for the OpenDNS Investigate API
  ☆24Updated 5 years ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆124Updated 5 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• Cyb3rWard0g / presentations
  Presentation Slides and Video links
  ☆32Updated 3 years ago
• MISP / MISP-maltego
  Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
  ☆178Updated last year
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆106Updated last year
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆73Updated 2 years ago