Alternatives and similar repositories for canarytokens

Users that are interested in canarytokens are comparing it to the libraries listed below

• thinkst / canarytokens-docker

  View on GitHub
  Docker configuration to quickly setup your own Canarytokens.
  ☆647Jan 23, 2026Updated 3 weeks ago
• thinkst / opencanary

  View on GitHub
  Modular and decentralised honeypot
  ☆2,769Updated this week
• redcanaryco / atomic-red-team

  View on GitHub
  Small and highly portable detection tests based on MITRE's ATT&CK.
  ☆11,570Updated this week
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,109Updated this week
• clong / DetectionLab

  View on GitHub
  Automate the creation of a lab environment complete with security tooling and logging best practices
  ☆4,901Jul 6, 2024Updated last year
• elceef / dnstwist

  View on GitHub
  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
  ☆5,583Apr 15, 2025Updated 9 months ago
• SpecterOps / BloodHound-Legacy

  View on GitHub
  Six Degrees of Domain Admin
  ☆10,537Aug 1, 2025Updated 6 months ago
• NextronSystems / APTSimulator

  View on GitHub
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,710Sep 23, 2025Updated 4 months ago
• activecm / rita-legacy

  View on GitHub
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆2,514Jan 12, 2026Updated last month
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,475Jan 12, 2026Updated last month
• mitre / caldera

  View on GitHub
  Automated Adversary Emulation Platform
  ☆6,733Updated this week
• paralax / awesome-honeypots

  View on GitHub
  an awesome list of honeypot resources
  ☆10,146Apr 1, 2025Updated 10 months ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,263Jan 21, 2026Updated 3 weeks ago
• Velocidex / velociraptor

  View on GitHub
  Digging Deeper....
  ☆3,747Feb 5, 2026Updated last week
• TheHive-Project / TheHive

  View on GitHub
  TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
  ☆3,883Jul 25, 2025Updated 6 months ago
• LOLBAS-Project / LOLBAS

  View on GitHub
  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
  ☆8,311Dec 6, 2025Updated 2 months ago
• RedSiege / EyeWitness

  View on GitHub
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆5,638Jan 5, 2026Updated last month
• SecurityRiskAdvisors / VECTR

  View on GitHub
  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…
  ☆1,548Nov 24, 2025Updated 2 months ago
• byt3bl33d3r / CrackMapExec

  View on GitHub
  A swiss army knife for pentesting networks
  ☆9,056Dec 6, 2023Updated 2 years ago
• MISP / MISP

  View on GitHub
  MISP (core software) - Open Source Threat Intelligence and Sharing Platform
  ☆6,123Updated this week
• outflanknl / RedELK

  View on GitHub
  Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…
  ☆2,618Dec 13, 2025Updated 2 months ago
• smicallef / spiderfoot

  View on GitHub
  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
  ☆16,633Dec 15, 2024Updated last year
• bluscreenofjeff / Red-Team-Infrastructure-Wiki

  View on GitHub
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,440Oct 1, 2025Updated 4 months ago
• telekom-security / tpotce

  View on GitHub
  🍯 T-Pot - The All In One Multi Honeypot Platform 🐝
  ☆8,756Jan 29, 2026Updated 2 weeks ago
• thinkst / canary-utils

  View on GitHub
  Collection of useful Canary tools
  ☆93Jan 29, 2026Updated 2 weeks ago
• Cyb3rWard0g / HELK

  View on GitHub
  The Hunting ELK
  ☆3,913Jun 1, 2024Updated last year
• owasp-amass / amass

  View on GitHub
  In-depth attack surface mapping and asset discovery
  ☆14,103Updated this week
• 0x4D31 / deception-as-detection

  View on GitHub
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆291Oct 28, 2017Updated 8 years ago
• mandiant / commando-vm

  View on GitHub
  Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…
  ☆7,529Oct 16, 2025Updated 3 months ago
• Shuffle / Shuffle

  View on GitHub
  Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
  ☆2,183Updated this week
• hslatman / awesome-threat-intelligence

  View on GitHub
  A curated list of Awesome Threat Intelligence resources
  ☆9,741Jan 19, 2026Updated 3 weeks ago
• nccgroup / ScoutSuite

  View on GitHub
  Multi-Cloud Security Auditing Tool
  ☆7,537Sep 23, 2025Updated 4 months ago
• fortra / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆15,448Updated this week
• alexandreborges / malwoverview

  View on GitHub
  Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…
  ☆3,531Jan 20, 2026Updated 3 weeks ago
• JPCERTCC / LogonTracer

  View on GitHub
  Investigate malicious Windows logon by visualizing and analyzing Windows event log
  ☆3,049Oct 19, 2025Updated 3 months ago
• Neo23x0 / Loki

  View on GitHub
  Loki - Simple IOC and YARA Scanner
  ☆3,719Jan 12, 2026Updated last month
• guardicore / monkey

  View on GitHub
  Infection Monkey - An open-source adversary emulation platform
  ☆6,944May 1, 2025Updated 9 months ago
• trufflesecurity / trufflehog

  View on GitHub
  Find, verify, and analyze leaked credentials
  ☆24,487Feb 7, 2026Updated last week
• OTRF / Security-Datasets

  View on GitHub
  Re-play Security Events
  ☆1,723Mar 20, 2024Updated last year