Alternatives and similar repositories for sandfly-setup

Users that are interested in sandfly-setup are comparing it to the libraries listed below

• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆84Updated 5 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• NettleSec / TriOp
  Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries
  ☆49Updated 2 years ago
• silverfort-open-source / latma
  ☆80Updated 2 years ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆35Updated 3 years ago
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆103Updated last year
• Information-Warfare-Center / CSI-SIEM
  CSI SIEM
  ☆110Updated 2 years ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆126Updated 5 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆63Updated 3 years ago
• arpitn30 / nipper-ng
  Automatically exported from code.google.com/p/nipper-ng
  ☆72Updated 3 years ago
• dcarlin / Blue-Team-Tools
  This contains a list of Blue Team Tools that I use daily, and have stored here for reference.
  ☆35Updated 8 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated last month
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆26Updated last month
• davidonzo / apiosintDS
  On demand query API for https://github.com/davidonzo/Threat-Intel project.
  ☆58Updated last year
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆49Updated last year
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆49Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆106Updated 3 years ago
• qeeqbox / seahorse
  ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)
  ☆47Updated 4 years ago
• catalyst256 / CyberNomadResources
  Accompanying documentation, images, source code and other stuff from the cybernomad.online blog
  ☆27Updated 5 years ago
• cisagov / gophish-tools
  Helpful tools for interacting with a GoPhish phishing instance
  ☆50Updated last month
• dhoelzer / Silky
  Web interface for monitoring and interacting with Netflow data stored in Silk repositories.
  ☆13Updated 6 years ago
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆55Updated 3 years ago
• ninoseki / shimon
  URL fingerprinting made easy
  ☆90Updated last year
• activecm / zcutter
  Extracts fields from zeek logs, compatible with zeek-cut
  ☆23Updated last year
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆40Updated 3 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆56Updated 3 years ago
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 6 years ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆45Updated last year
• corelight / threat-hunting-guide
  ☆55Updated 3 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆45Updated 2 years ago