Alternatives and similar repositories for siemcraft

Users that are interested in siemcraft are comparing it to the libraries listed below

• mttaggart / wtfbins
  WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
  ☆165Updated 7 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆163Updated 3 years ago
• swimlane / atomic-operator
  A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
  ☆136Updated last year
• AbdulRhmanAlfaifi / Fennec
  Artifact collection tool for *nix systems
  ☆213Updated last year
• Neo23x0 / LOLSecIssues
  Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools.…
  ☆57Updated 2 years ago
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆256Updated last year
• huntandhackett / Antignis
  Source code and examples for Antignis
  ☆44Updated 3 years ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• PayloadSecurity / Sandbox_Scryer
  ☆226Updated 3 years ago
• BinaryDefense / log4j-honeypot-flask
  Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228
  ☆151Updated 3 years ago
• Defenders-Guide / TheDefendersGuide
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆159Updated 2 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆142Updated 3 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆100Updated 3 years ago
• 0x706972686f / RMM-Catalogue
  ☆104Updated 4 months ago
• calebstewart / python-sigma
  Python API for interacting with sigma rules.
  ☆54Updated 3 years ago
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆208Updated 3 years ago
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆121Updated 2 years ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Updated 3 years ago
• adobe / libLOL
  ☆50Updated 3 months ago
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆265Updated last year
• malwarejake-public / conference-presentations
  Conference presentations
  ☆60Updated last month
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆139Updated last year
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆37Updated 2 years ago
• fox-it / cisco-ios-xe-implant-detection
  Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)
  ☆41Updated 2 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated last year
• mttaggart / seclab
  Automated security lab provisioning
  ☆84Updated 2 weeks ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆113Updated 2 years ago
• huntresslabs / threat-intel
  This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
  ☆41Updated 3 weeks ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆79Updated 5 months ago