Alternatives and similar repositories for ctia:

Users that are interested in ctia are comparing it to the libraries listed below

• threatgrid / ctim
  Cisco Threat Intellligence Model
  ☆69Updated 2 months ago
• clj-holmes / clj-holmes
  A CLI SAST (Static application security testing) tool which was built with the intent of finding vulnerable Clojure code via rules that u…
  ☆110Updated last year
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• nerdiosity / DNSplice
  To parse ugly Microsoft DNS Logs....
  ☆40Updated 6 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• randomuserid / Tylium
  Primary data pipelines for intrusion detection, security analytics and threat hunting
  ☆86Updated 3 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆72Updated 2 years ago
• zeek / zeek-docs
  Documentation for Zeek
  ☆50Updated this week
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆92Updated 6 years ago
• oasis-open / cti-training
  OASIS TC Open Repository: Providing a collection of CTI-related training materials
  ☆49Updated 3 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated 3 months ago
• da667 / AutoMISP
  automate your MISP installs
  ☆67Updated 4 years ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 2 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• P4T12ICK / Sigma-Hunting-App
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆108Updated 5 years ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆110Updated last month
• vmware-archive / cb-reporting
  Report Generation from the Carbon Black REST API
  ☆15Updated 3 years ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆72Updated 2 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 3 years ago
• clj-holmes / clj-watson
  clojure deps SCA
  ☆89Updated last month
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 4 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 8 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 4 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆74Updated 12 years ago