Alternatives and similar repositories for APT-Malware-Reports-Set-1:

Users that are interested in APT-Malware-Reports-Set-1 are comparing it to the libraries listed below

• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated 11 months ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆18Updated 4 years ago
• COSSAS / dgad
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆39Updated 5 months ago
• qeeqbox / reports
  Recent cyber attacks reports & interesting analysis files
  ☆15Updated 2 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 3 years ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆57Updated 4 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆42Updated last year
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated last year
• abzcoding / aptdetector
  Advanced Persistent Threat Detection Using Network Analysis
  ☆22Updated 5 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• osV22 / ATTACK-Force-Graph
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆22Updated 3 years ago
• qeeqbox / octopus
  Pure Honeypots with an automated bash script
  ☆19Updated 3 years ago
• OTRF / openhunt
  ☆33Updated 3 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆26Updated 4 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 4 years ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated last year
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆66Updated 9 months ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 6 years ago
• chaoticmachinery / mass_triage_tools
  Mass Triage Tools
  ☆20Updated 6 months ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆28Updated 7 years ago
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 4 years ago
• egaus / malicious_url_analysis
  ☆18Updated 6 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆16Updated 4 months ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 9 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆49Updated 4 months ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year