π Threat Bus β A threat intelligence dissemination layer for open-source security tools.
β270Mar 17, 2023Updated 3 years ago
Alternatives and similar repositories for threatbus
Users that are interested in threatbus are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tenzir is the data pipeline engine for security teams.β737May 2, 2026Updated last week
- Enables Zeek to communicate with Tenzirβ11Jul 20, 2023Updated 2 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightingsβ122Jul 12, 2021Updated 4 years ago
- Zeek-Formatted Threat Intelligence Feedsβ398May 1, 2026Updated last week
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fattβ40Jun 20, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Repository of resources for configuring a Red Team SIEM using Elasticβ102Jul 10, 2018Updated 7 years ago
- TAXII 2.0 Server implemented in Node JS with MongoDB backendβ12Jan 3, 2023Updated 3 years ago
- CIF v3 -- the fastest way to consume threat intelligenceβ184Apr 20, 2023Updated 3 years ago
- Dockerized Zeekβ12Mar 9, 2024Updated 2 years ago
- STIX2 graph visualisation library in JSβ98Feb 7, 2026Updated 3 months ago
- Full packet capture with flow cutoff, rotation, and compressionβ15Sep 18, 2018Updated 7 years ago
- Log4j Exploit Detection Logic for Zeekβ19Nov 25, 2025Updated 5 months ago
- Extract and aggregate threat intelligence.β913Jan 31, 2024Updated 2 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detβ¦β172May 23, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Re-play Security Eventsβ1,746Mar 20, 2024Updated 2 years ago
- Your Everyday Threat Intelligenceβ1,977Apr 14, 2026Updated 3 weeks ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysisβ¦β2,510Jan 12, 2026Updated 3 months ago
- β13Aug 13, 2021Updated 4 years ago
- DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.β573Dec 12, 2021Updated 4 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quicklyβ¦β14Aug 19, 2022Updated 3 years ago
- MISP trainings, threat intel and information sharing training materials with source codeβ430Mar 30, 2026Updated last month
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.β1,114Apr 28, 2026Updated last week
- The FASTEST way to consume threat intel.β69May 10, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A set of Zeek scripts to detect ATT&CK techniques.β621Jun 26, 2024Updated last year
- User guide of MISPβ289Mar 20, 2026Updated last month
- This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return resulβ¦β261Apr 8, 2026Updated last month
- A query aggregator for OSINT based threat huntingβ938Mar 7, 2026Updated 2 months ago
- Real-time, container-based file scanning at enterprise scaleβ985Mar 19, 2026Updated last month
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".β196Sep 23, 2024Updated last year
- Documentation for Zeekβ50Oct 13, 2025Updated 6 months ago
- A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.β32Jun 29, 2022Updated 3 years ago
- Language server for Zeek scriptβ17Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Detect Tactics, Techniques & Combat Threatsβ2,287Apr 29, 2026Updated last week
- A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDBβ19Mar 15, 2024Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat huntsβ1,182Jul 26, 2023Updated 2 years ago
- Watcher - Open Source AI-powered Cyber Threat Intelligence & Hunting Platform. Developed with Django & React JS.β1,273Updated this week
- server for indexing and querying passive DNS observationsβ49Jan 12, 2026Updated 3 months ago
- A collection of resources for Threat Huntersβ917Oct 15, 2024Updated last year
- Scirius is a web application for Suricata ruleset management and threat hunting.β675Dec 23, 2025Updated 4 months ago