Alternatives and similar repositories for nerlogparser

Users that are interested in nerlogparser are comparing it to the libraries listed below

• nccgroup / JA3_outlier
  Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
  ☆16Updated 3 years ago
• mitre / tmnt
  Algorithms for training state-of-the-art neural topic models
  ☆35Updated 5 months ago
• patternex / awesome-ml-for-threat-detection
  A curated list of resources to deep dive into the intersection of applied machine learning and threat detection.
  ☆19Updated 5 years ago
• aiforsec22 / IEEEEuroSP23
  ☆25Updated 2 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆51Updated this week
• casework / CASE
  Cyber-investigation Analysis Standard Expression (CASE) Ontology
  ☆72Updated 4 months ago
• dod-cyber-crime-center / Digital-Crime-Scene-Challenge
  The object of the Digital Crime Scene Challenge is for participants to use their forensic and investigative skills to focus on potential …
  ☆39Updated 12 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• InQuest / microsoft-office-macro-clustering
  ☆21Updated 2 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 4 years ago
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆70Updated 3 months ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Updated 3 years ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆14Updated 2 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 3 years ago
• ccdcoe / Frankencoding
  You're busted!
  ☆27Updated 6 years ago
• anelshaer / Remote-Linux-Triage-Collection-using-OSquery
  Remotely collect linux live forensics artifacts.
  ☆14Updated 3 years ago
• mitre / caldera-agent
  ☆20Updated 8 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• mnemonic-no / provreq
  Adversary Emulation Planner
  ☆42Updated 3 weeks ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆75Updated 4 years ago
• stratosphereips / shelLM
  Code for shelLM tool
  ☆57Updated last year
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 3 years ago
• endgameinc / homoglyph
  ☆30Updated 7 years ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year
• ThisIsLibra / MalPull
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆30Updated 2 years ago
• vmapps / attack2neo
  Import Mitre Att&ck into Neo4j database
  ☆39Updated 3 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 3 years ago
• mitre-atlas / atlas-data
  ATLAS tactics, techniques, and case studies data
  ☆99Updated last week
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated 2 years ago