Alternatives and similar repositories for gait

Users that are interested in gait are comparing it to the libraries listed below

• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Updated 2 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• clausing / scripts
  ☆67Updated last week
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 9 months ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆54Updated 3 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆36Updated 3 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆77Updated 2 weeks ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 4 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• ioc-fang / ioc-fanger
  Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
  ☆65Updated last year
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆73Updated 2 years ago
• mitre / atomic
  A MITRE Caldera plugin
  ☆46Updated 9 months ago
• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆15Updated 3 years ago
• vertexproject / synapse-quickstart
  Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.
  ☆45Updated 3 years ago
• sans-blue-team / sec555-wiki
  ☆77Updated 6 years ago
• weslambert / securityonion-misp
  ☆36Updated 4 years ago
• redcanaryco / vscode-attack
  Visual Studio Code extension for MITRE ATT&CK
  ☆54Updated last year
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆40Updated 4 months ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆78Updated 4 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆43Updated last year
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• target / strelka-ui
  Strelka Web UI for File Submission and Analysis
  ☆71Updated last week
• Velocidex / eql2vql
  Transform EQL detection rules to VQL artifacts
  ☆11Updated 3 years ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆47Updated 2 years ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆45Updated 5 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆54Updated 3 years ago