Alternatives and similar repositories for auditdBroFramework

Users that are interested in auditdBroFramework are comparing it to the libraries listed below

• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 8 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• wolfpack1 / threatrecon
  API Tools
  ☆27Updated 9 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• CIRCL / bgpranking-redis-api
  API to access the Redis database of a BGP Ranking instance.
  ☆17Updated 7 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 8 years ago
• CERT-Bund / misp-warninglists-analyzer
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Updated 7 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• cudeso / censys-certif-crawl
  Crawl certificate information from censys
  ☆8Updated 8 years ago
• PidgeyL / MISP-Extractor
  Extract information from MISP via the API
  ☆15Updated 8 years ago
• ncsa / bro-simple-scan
  ☆14Updated last year
• initconf / scan-NG
  scan-detection policies for bro
  ☆16Updated 4 months ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 10 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 10 years ago
• sheharbano / Correlation-Framework
  A framework that correlates Bro events
  ☆18Updated 11 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 10 years ago
• udishamir / Domain-Analyzer
  Detect malicious domain, Blablablablabla
  ☆26Updated 8 years ago
• Kathayra / HT-Trackr
  How can you track the hunting techniques you come up with?
  ☆13Updated 7 years ago
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆18Updated 8 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆21Updated 6 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 10 years ago
• EmergingThreats / cuckoo-1.1
  cuckoo-1.1 fork with suricata/moloch/clamav and other goodies
  ☆23Updated 10 years ago