Alternatives and similar repositories for pandora

Users that are interested in pandora are comparing it to the libraries listed below

• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated last year
• redcanaryco / chain-reactor
  Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
  ☆318Updated 3 months ago
• muteb / Hoarder
  This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …
  ☆202Updated 4 years ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆255Updated 8 months ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆155Updated 3 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 3 years ago
• forensicanalysis / artifactcollector
  🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
  ☆291Updated 2 months ago
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆164Updated last year
• ninoseki / eml_analyzer
  An application to analyze the EML file
  ☆289Updated this week
• AbdulRhmanAlfaifi / Fennec
  Artifact collection tool for *nix systems
  ☆209Updated last year
• lucky-luk3 / Grafiki
  Threat Hunting tool about Sysmon and graphs
  ☆334Updated 2 years ago
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆263Updated last year
• Orange-Cyberdefense / russia-ukraine_IOCs
  Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake
  ☆175Updated 2 years ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆228Updated last week
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆97Updated 2 weeks ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆205Updated last month
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆131Updated last month
• EFForg / yaya
  Yet Another Yara Automaton - Automatically curate open source yara rules and run scans
  ☆285Updated last year
• Censys-Research / censeye
  ☆146Updated last month
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆196Updated last month
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆158Updated 3 years ago
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆172Updated last month
• PayloadSecurity / Sandbox_Scryer
  ☆226Updated 2 years ago
• sublime-security / sublime-rules
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆313Updated this week
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆105Updated this week
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆157Updated this week
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated 3 months ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆134Updated 10 months ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated last year