Alternatives and similar repositories for siemcraft

Users that are interested in siemcraft are comparing it to the libraries listed below

• mttaggart / wtfbins
  WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
  ☆166Updated 4 months ago
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆255Updated 8 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆158Updated 3 years ago
• adobe / libLOL
  ☆49Updated 2 weeks ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• Defenders-Guide / TheDefendersGuide
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆154Updated 2 years ago
• swimlane / atomic-operator
  A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
  ☆134Updated last year
• hazcod / ransomwhere
  A PoC ransomware sample to test out your ransomware response strategy.
  ☆210Updated 3 months ago
• referefref / sinon
  Automation tool for Windows Deception Host Burn-In
  ☆86Updated 8 months ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆155Updated 3 years ago
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆115Updated 10 months ago
• PayloadSecurity / Sandbox_Scryer
  ☆226Updated 2 years ago
• cisagov / parsnip
  ☆74Updated 2 weeks ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated last year
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆118Updated 2 years ago
• Neo23x0 / LOLSecIssues
  Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools.…
  ☆58Updated last year
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 3 years ago
• calebstewart / python-sigma
  Python API for interacting with sigma rules.
  ☆55Updated 3 years ago
• Sh3lldor / PVT
  PCAP visualization tool
  ☆103Updated 2 years ago
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆38Updated 2 years ago
• BinaryDefense / log4j-honeypot-flask
  Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228
  ☆150Updated 3 years ago
• grahamhelton / SansTerminalIndexer
  Easily create index of your SANS books
  ☆18Updated 2 years ago
• ImpostorKeanu / sec-vault-gen
  Python utility to generate filesystem content for Obsidian.
  ☆86Updated 2 years ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆65Updated last year
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆69Updated last week
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆128Updated last year
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆90Updated last year
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆204Updated 3 years ago