Alternatives and similar repositories for siemcraft

Users that are interested in siemcraft are comparing it to the libraries listed below

• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆160Updated 3 years ago
• mttaggart / wtfbins
  WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
  ☆166Updated 5 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• Sh3lldor / PVT
  PCAP visualization tool
  ☆103Updated 2 years ago
• mrcbax / honeyup
  An uploader honeypot designed to look like poor website security.
  ☆28Updated 4 months ago
• swimlane / atomic-operator
  A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
  ☆135Updated last year
• PayloadSecurity / Sandbox_Scryer
  ☆226Updated 2 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆132Updated 3 years ago
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆256Updated 9 months ago
• blacklotuslabs / IOCs
  IOCs published by Black Lotus Labs
  ☆122Updated 3 months ago
• BinaryDefense / log4j-honeypot-flask
  Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228
  ☆151Updated 3 years ago
• Defenders-Guide / TheDefendersGuide
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆155Updated 2 years ago
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆38Updated 2 years ago
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆204Updated 3 years ago
• AbdulRhmanAlfaifi / Fennec
  Artifact collection tool for *nix systems
  ☆210Updated last year
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆265Updated last year
• hazcod / ransomwhere
  A PoC ransomware sample to test out your ransomware response strategy.
  ☆212Updated 4 months ago
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆227Updated 4 years ago
• jklepsercyber / defender-detectionhistory-parser
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆113Updated 3 years ago
• mubix / CVE-2021-44228-Log4Shell-Hashes
  Hashes for vulnerable LOG4J versions
  ☆154Updated 3 years ago
• calebstewart / python-sigma
  Python API for interacting with sigma rules.
  ☆54Updated 3 years ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• redcanaryco / AtomicTestHarnesses
  Public Repo for Atomic Test Harness
  ☆274Updated 4 months ago
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆118Updated 2 years ago
• nccgroup / KilledProcessCanary
  A canary designed to minimize the impact from certain Ransomware actors
  ☆98Updated 4 years ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆155Updated 9 months ago
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆209Updated 6 months ago
• Neo23x0 / LOLSecIssues
  Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools.…
  ☆58Updated last year
• MalwareTech / SpookySSLTools
  Example tools for detecting software using OpenSSL 3.0.0 - 3.0.6 (vulnerable to latest unnamed vulnerability)
  ☆43Updated 2 years ago
• xRET2pwn / Teamsniper
  Teamsniper is a tool for fetching keywords in a Microsoft Teams such as (passwords, emails, database, etc.).
  ☆197Updated 2 years ago