Alternatives and similar repositories for ransomwarelegality

Users that are interested in ransomwarelegality are comparing it to the libraries listed below

• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 4 years ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆42Updated 3 weeks ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆17Updated 7 months ago
• NextronSystems / nextron-helper-scripts
  Public tools, scripts or code snippets that can help when working with our products
  ☆46Updated last week
• strozfriedberg / QELP
  Quick ESXi Log Parser
  ☆28Updated 3 months ago
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 3 years ago
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆53Updated last year
• plonxyz / 4n6pi
  ☆20Updated 2 weeks ago
• 00010111 / gMetaDataParse
  ☆24Updated 11 months ago
• cmdaltr / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆32Updated 2 months ago
• jasonsford / intel_collector
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆31Updated 2 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆55Updated last year
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• lasq88 / socgholish_finder
  ☆14Updated 2 years ago
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 6 months ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆26Updated 2 months ago
• svch0stz / velociraptor-detections
  ☆22Updated 3 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆24Updated 4 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆58Updated 11 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆76Updated last year
• op7ic / Cloud-Investigate
  A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.
  ☆40Updated last year
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated 7 months ago
• cudeso / misp-reporting
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Updated 5 months ago
• SkillAegis / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆34Updated 3 months ago
• rj-chap / BaselineTraining
  Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk
  ☆12Updated 6 years ago
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆40Updated last year
• DomainTools / DomainCAT
  Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations
  ☆46Updated 4 years ago