Alternatives and similar repositories for UTMStack

Users that are interested in UTMStack are comparing it to the libraries listed below

• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆406Updated this week
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆310Updated last week
• socfortress / CoPilot
  SOCFortress CoPilot
  ☆287Updated this week
• bgenev / impulse-xdr
  Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables…
  ☆136Updated last year
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆216Updated 2 weeks ago
• bitorscanner / Bitor
  Bitor Scanning Software
  ☆383Updated last month
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆771Updated 2 weeks ago
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆97Updated 4 months ago
• Permiso-io-tools / CloudGrappler
  ☆261Updated 7 months ago
• stanfrbd / cyberbro
  A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
  ☆427Updated last week
• referefref / sinon
  Automation tool for Windows Deception Host Burn-In
  ☆86Updated 6 months ago
• Admyral-Technologies / admyral
  🤖 Admyral enables continuous control monitoring for any custom control
  ☆330Updated 6 months ago
• TheFirewall-code / TheFirewall-Secrets-SCA
  ☆165Updated last week
• cisagov / ScubaGoggles
  SCuBA Secure Configuration Baselines and assessment tool for Google Workspace
  ☆236Updated this week
• 3CORESec / testmynids.org
  A website and framework for testing NIDS detection
  ☆264Updated 8 months ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆128Updated 11 months ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆246Updated 2 weeks ago
• SAP / cloud-active-defense
  Add a layer of active defense to your cloud applications.
  ☆92Updated this week
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆193Updated last year
• muchdogesec / awesome_threat_intel_blogs
  A curated list of Awesome Threat Intelligence Blogs
  ☆422Updated last week
• TURROKS / CVE_Prioritizer
  Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…
  ☆651Updated 2 months ago
• securityjoes / MasterParser
  MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
  ☆731Updated 2 months ago
• hevnsnt / Awesome_Incident_Response
  Awesome Incident Response
  ☆273Updated last year
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆205Updated 4 months ago
• yevonnaelandrew / t-guard
  T-Guard Repository
  ☆16Updated last year
• hackertarget / pcap-did-what
  Analyze pcaps with Zeek and a Grafana Dashboard
  ☆177Updated last year
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆415Updated this week
• eramba / docker
  Docker helper files for running eramba software
  ☆47Updated last week
• sqall01 / LSMS
  Linux Security and Monitoring Scripts
  ☆324Updated 8 months ago
• aquasecurity / traceeshark
  Deep Linux runtime visibility meets Wireshark
  ☆291Updated last week