Alternatives and similar repositories for rcATT

Users that are interested in rcATT are comparing it to the libraries listed below

• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆166Updated last year
• mitre-attack / tram
  Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.
  ☆352Updated 3 years ago
• Mhackiori / STIXnet
  A Novel and Modular Solution for Extracting All STIX Objects in CTI Reports
  ☆24Updated last year
• unfetter-discover / unfetter-insight
  Unfetter Insight performs natural language processing and analysis for text data to determine and convert to CTI Stix data automatically.
  ☆19Updated 6 years ago
• KaiLiu-Leo / TTPDrill-0.5
  TTPDrill focuses on developing automated and context-aware analytics of cyber threat intelligence to accurately learn attack patterns (TT…
  ☆26Updated 5 years ago
• ksatvat / EXTRACTOR
  ☆77Updated 2 years ago
• aptresearch / datasets
  ☆23Updated 3 years ago
• ALFA-group / BRON
  "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…
  ☆95Updated 11 months ago
• li-zhenyuan / Knowledge-enhanced-Attack-Graph
  AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports
  ☆152Updated 2 years ago
• oasis-open / cti-stix-visualization
  OASIS TC Open Repository: Lightweight visualization for STIX 2.0 objects and relationships
  ☆152Updated last month
• aptnotes / tools
  Tools to interact with APTnotes reporting/index.
  ☆103Updated 4 years ago
• FiveDirections / OpTC-data
  ☆111Updated 5 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• center-for-threat-informed-defense / tram
  TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…
  ☆498Updated last month
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆104Updated 3 years ago
• center-for-threat-informed-defense / attack_to_cve
  🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…
  ☆238Updated last year
• aiforsec22 / IEEEEuroSP23
  ☆25Updated last year
• jackaduma / ThreatReportExtractor
  Extracting Attack Behavior from Threat Reports
  ☆77Updated 2 years ago
• armbues / ioc_parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆436Updated 2 years ago
• ehsanaghaei / SecureBERT
  SecureBERT is a domain-specific language model to represent cybersecurity textual data.
  ☆93Updated 11 months ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 10 months ago
• freetaxii / stix2-graphics
  Graphics, icons, and diagrams to support STIX 2
  ☆46Updated 4 years ago
• vmapps / attack2neo
  Import Mitre Att&ck into Neo4j database
  ☆36Updated 2 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆80Updated 6 years ago
• mitre-attack / attack-stix-data
  STIX data representing MITRE ATT&CK
  ☆414Updated last month
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆363Updated 4 years ago
• oasis-open / cti-taxii-server
  OASIS TC Open Repository: TAXII 2 Server Library Written in Python
  ☆129Updated last year
• IS5882 / Open-CyKG
  ☆83Updated 2 years ago
• oasis-open / cti-python-stix2
  OASIS TC Open Repository: Python APIs for STIX 2
  ☆388Updated last month
• sophos / yaraml_rules
  Security ML models encoded as Yara rules
  ☆214Updated last year