tenzir / threatbusView external linksLinks
๐ Threat Bus โ A threat intelligence dissemination layer for open-source security tools.
โ269Mar 17, 2023Updated 2 years ago
Alternatives and similar repositories for threatbus
Users that are interested in threatbus are comparing it to the libraries listed below
Sorting:
- Tenzir is the data pipeline engine for security teams.โ719Updated this week
- Repository of resources for configuring a Red Team SIEM using Elasticโ101Jul 10, 2018Updated 7 years ago
- Enables Zeek to communicate with Tenzirโ11Jul 20, 2023Updated 2 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightingsโ122Jul 12, 2021Updated 4 years ago
- Zeek-Formatted Threat Intelligence Feedsโ384Updated this week
- TAXII 2.0 Server implemented in Node JS with MongoDB backendโ12Jan 3, 2023Updated 3 years ago
- STIX2 graph visualisation library in JSโ95Feb 7, 2026Updated last week
- CIF v3 -- the fastest way to consume threat intelligenceโ183Apr 20, 2023Updated 2 years ago
- Dockerized Zeekโ12Mar 9, 2024Updated last year
- Extract and aggregate threat intelligence.โ902Jan 31, 2024Updated 2 years ago
- DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.โ573Dec 12, 2021Updated 4 years ago
- Re-play Security Eventsโ1,723Mar 20, 2024Updated last year
- Firepit - STIX Columnar Storageโ17Jun 5, 2024Updated last year
- MISP trainings, threat intel and information sharing training materials with source codeโ422Dec 17, 2025Updated last month
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysisโฆโ2,514Jan 12, 2026Updated last month
- A set of Zeek scripts to detect ATT&CK techniques.โ620Jun 26, 2024Updated last year
- Log4j Exploit Detection Logic for Zeekโ19Nov 25, 2025Updated 2 months ago
- Your Everyday Threat Intelligenceโ1,949Updated this week
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fattโ40Jun 20, 2023Updated 2 years ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.โ1,107Dec 2, 2025Updated 2 months ago
- Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relateโฆโ179Nov 16, 2023Updated 2 years ago
- User guide of MISPโ283Dec 31, 2024Updated last year
- OASIS TC Open Repository: Python APIs for STIX 2โ414Feb 9, 2026Updated last week
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".โ193Sep 23, 2024Updated last year
- Watcher - Open Source AI-powered Cyber Threat Intelligence & Hunting Platform. Developed with Django & React JS.โ1,121Updated this week
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platformโ247Jan 14, 2026Updated last month
- A query aggregator for OSINT based threat huntingโ930Jan 23, 2026Updated 3 weeks ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detโฆโ172May 23, 2023Updated 2 years ago
- Full Packet Capture for the Massesโ14Sep 13, 2018Updated 7 years ago
- Real-time, container-based file scanning at enterprise scaleโ974Updated this week
- DFIRTrack - The Incident Response Tracking Applicationโ532Jan 13, 2026Updated last month
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CKยฎ knowledge base. This repository conโฆโ42Jan 20, 2026Updated 3 weeks ago
- Multithreaded threat Intelligence gathering built with Python3โ177Jan 23, 2018Updated 8 years ago
- Detect Tactics, Techniques & Combat Threatsโ2,263Jan 21, 2026Updated 3 weeks ago
- Full packet capture with flow cutoff, rotation, and compressionโ15Sep 18, 2018Updated 7 years ago
- OSSEM Detection Modelโ184Oct 11, 2022Updated 3 years ago
- Splunk code (SPL) for serious threat hunters and detection engineers.โ289Jan 15, 2024Updated 2 years ago
- This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return resulโฆโ260Feb 9, 2026Updated last week
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .โ68Oct 2, 2023Updated 2 years ago