Alternatives and similar repositories for sandfly-setup:

Users that are interested in sandfly-setup are comparing it to the libraries listed below

• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆40Updated 11 months ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated last year
• NettleSec / TriOp
  Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries
  ☆49Updated 2 years ago
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆79Updated 5 years ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 3 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆53Updated this week
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆63Updated last year
• weslambert / securityonion-misp
  ☆34Updated 4 years ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated last week
• clausing / scripts
  ☆65Updated 2 months ago
• iomoath / yara-scanner
  YaraScanner is a file pattern-matching tool based on YARA rules.
  ☆56Updated last year
• malpedia / malpediaclient
  ☆22Updated last week
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆46Updated 2 years ago
• capesstack / capes-docker
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Updated 3 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆67Updated 4 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆53Updated 3 years ago
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆34Updated 8 months ago
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆32Updated last year
• juaromu / wazuh
  ☆19Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 3 years ago
• silverfort-open-source / latma
  ☆80Updated 2 years ago
• davidonzo / apiosintDS
  On demand query API for https://github.com/davidonzo/Threat-Intel project.
  ☆55Updated 10 months ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆45Updated 11 months ago
• arpitn30 / nipper-ng
  Automatically exported from code.google.com/p/nipper-ng
  ☆71Updated 2 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated last year
• Information-Warfare-Center / CSI-SIEM
  CSI SIEM
  ☆110Updated 2 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year