Alternatives and similar repositories for ac3-threat-sightings

Users that are interested in ac3-threat-sightings are comparing it to the libraries listed below

• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆82Updated last month
• elastic / sans-dfir-2022
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Updated 9 months ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆106Updated 7 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆86Updated 2 weeks ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated 2 years ago
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆45Updated 5 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆62Updated 5 months ago
• ConnorShride / box-ps
  Powershell sandboxing utility
  ☆19Updated last week
• splunk / PEAK
  Security Content for the PEAK Threat Hunting Framework
  ☆39Updated last year
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 3 years ago
• blueteam0ps / det-eng-samples
  This repository contains sample log data that were collected after running adversary simulations in Microsoft 365
  ☆23Updated last year
• opencybersecurityalliance / oca-iob
  Augmentation to Machine Readable CTI
  ☆37Updated 2 months ago
• evild3ad / Get-MiniTimeline
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆33Updated last year
• strozfriedberg / QELP
  Quick ESXi Log Parser
  ☆28Updated 3 weeks ago
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆43Updated last year
• Cyb3rWard0g / IntelRAGU
  Intel Retrieval Augmented Generation (RAG) Utilities
  ☆91Updated last year
• humpalum / vscode-sigma
  ☆17Updated last month
• NumLocK15 / YaraStation
  Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centra…
  ☆36Updated 3 years ago
• tsale / Intrusion_data
  This repository is created to store the artifacts for any intrusions I share publicly.
  ☆26Updated 2 years ago
• TactiKoolSec / MFT-Detect-Response
  Common framework for designing a detection and response framework for the most common MFT solutions
  ☆16Updated 2 years ago
• Hexastrike / EventWhisper
  A Windows Event Log MCP
  ☆37Updated 2 months ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• 00010111 / gMetaDataParse
  ☆23Updated 8 months ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated 2 years ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆110Updated 11 months ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 3 months ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆49Updated 3 weeks ago