Alternatives and similar repositories for nerlogparser

Users that are interested in nerlogparser are comparing it to the libraries listed below

• nccgroup / JA3_outlier
  Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
  ☆15Updated 3 years ago
• patternex / awesome-ml-for-threat-detection
  A curated list of resources to deep dive into the intersection of applied machine learning and threat detection.
  ☆19Updated 5 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆51Updated last week
• zerber0s / mac_int
  macOS Artifact Intelligence Tool
  ☆13Updated 6 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 3 years ago
• adulau / napkin-text-analysis
  Napkin is a simple tool to produce statistical analysis of a text
  ☆12Updated last year
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 3 years ago
• aiforsec22 / IEEEEuroSP23
  ☆25Updated 2 years ago
• casework / CASE
  Cyber-investigation Analysis Standard Expression (CASE) Ontology
  ☆72Updated 4 months ago
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated 2 years ago
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆70Updated 3 months ago
• vulnerability-lookup / VulnTrain
  A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.
  ☆23Updated last week
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Updated 3 years ago
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆17Updated 2 weeks ago
• ruppde / yara_rules
  Yara rules
  ☆22Updated 2 years ago
• hashdd / pyhashdd
  A python library for building and using hash databases.
  ☆22Updated 2 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 3 years ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆19Updated last year
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆15Updated 4 years ago
• g-les / macho_similarity
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Updated last year
• dod-cyber-crime-center / Digital-Crime-Scene-Challenge
  The object of the Digital Crime Scene Challenge is for participants to use their forensic and investigative skills to focus on potential …
  ☆39Updated 12 years ago
• UMBC-Onramp / CyEnts-Cyber-Blog-Dataset
  A Corpus of Data from Various Cybersecurity Blogs
  ☆15Updated 3 years ago
• InQuest / microsoft-office-macro-clustering
  ☆20Updated 2 years ago
• egaus / malicious_url_analysis
  ☆18Updated 7 years ago
• Velocidex / eql2vql
  Transform EQL detection rules to VQL artifacts
  ☆12Updated 4 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆35Updated 3 weeks ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆53Updated 3 weeks ago
• MISP / PyTaxonomies
  Python module to use the MISP Taxonomies
  ☆31Updated 3 weeks ago