Alternatives and similar repositories for UTMStack

Users that are interested in UTMStack are comparing it to the libraries listed below

• socfortress / CoPilot
  SOCFortress CoPilot
  ☆427Updated this week
• WithSecureLabs / Kanvas
  A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
  ☆433Updated 3 months ago
• bgenev / impulse-xdr
  Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables…
  ☆138Updated last year
• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆502Updated last week
• GurkhaShieldForce / VulnRisk_Public
  VulnRisk - Open Source Vulnerability Risk Assessment Platform
  ☆125Updated last month
• stanfrbd / cyberbro
  A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
  ☆489Updated this week
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆136Updated last month
• cisagov / LME
  Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-t…
  ☆1,347Updated this week
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆1,195Updated last week
• bitorscanner / Bitor
  Bitor Scanning Software
  ☆439Updated 2 months ago
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆244Updated last month
• Admyral-Technologies / admyral
  🤖 Admyral enables continuous control monitoring for any custom control
  ☆335Updated last year
• eramba / docker
  Docker helper files for running eramba software
  ☆64Updated 3 weeks ago
• Defendstack / DefendStack-Suite
  Open source defense for your entire stack
  ☆190Updated 3 months ago
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆490Updated 2 weeks ago
• cisagov / thorium
  A scalable file analysis and data generation platform that allows users to easily orchestrate arbitrary docker/vm/shell tools at scale.
  ☆972Updated 2 weeks ago
• 3CORESec / testmynids.org
  A website and framework for testing NIDS detection
  ☆311Updated 6 months ago
• securityjoes / MasterParser
  MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
  ☆749Updated 5 months ago
• OpenAEV-Platform / openaev
  Open Adversarial Exposure Validation Platform
  ☆1,583Updated this week
• kunai-project / kunai
  Threat-hunting tool for Linux
  ☆1,030Updated last month
• Permiso-io-tools / CloudGrappler
  CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…
  ☆265Updated last month
• gbrigandi / mcp-server-wazuh
  MCP Server for Wazuh SIEM
  ☆162Updated last month
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆90Updated 2 weeks ago
• dfir-iris / iris-web
  Collaborative Incident Response platform
  ☆1,362Updated this week
• misje / opencti-wazuh-connector
  OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
  ☆22Updated last year
• yevonnaelandrew / t-guard
  T-Guard Repository
  ☆18Updated last year
• juaromu / wazuh-opencti
  ☆40Updated 2 years ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆449Updated this week
• NethServer / nethsecurity
  NethSecurity image and build environment
  ☆151Updated this week
• aquasecurity / traceeshark
  Deep Linux runtime visibility meets Wireshark
  ☆300Updated 2 months ago