Alternatives and similar repositories for rcATT

Users that are interested in rcATT are comparing it to the libraries listed below

• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆170Updated last year
• ALFA-group / BRON
  "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…
  ☆97Updated last year
• oasis-open / cti-stix-visualization
  OASIS TC Open Repository: Lightweight visualization for STIX 2.0 objects and relationships
  ☆155Updated 5 months ago
• unfetter-discover / unfetter-insight
  Unfetter Insight performs natural language processing and analysis for text data to determine and convert to CTI Stix data automatically.
  ☆20Updated 7 years ago
• FiveDirections / OpTC-data
  ☆122Updated 5 years ago
• Mhackiori / STIXnet
  A Novel and Modular Solution for Extracting All STIX Objects in CTI Reports
  ☆26Updated 2 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 2 months ago
• mitre-attack / tram
  Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.
  ☆353Updated 3 years ago
• jackaduma / ThreatReportExtractor
  Extracting Attack Behavior from Threat Reports
  ☆78Updated 2 years ago
• center-for-threat-informed-defense / attack_to_cve
  🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…
  ☆241Updated last year
• yukh1402 / cti-stix-diamond-activity-attack-graph
  STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling
  ☆33Updated 9 months ago
• center-for-threat-informed-defense / tram
  TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…
  ☆518Updated 4 months ago
• li-zhenyuan / Knowledge-enhanced-Attack-Graph
  AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports
  ☆167Updated 2 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆72Updated 5 years ago
• ehsanaghaei / SecureBERT
  SecureBERT is a domain-specific language model to represent cybersecurity textual data.
  ☆99Updated last year
• freetaxii / stix2-graphics
  Graphics, icons, and diagrams to support STIX 2
  ☆47Updated 4 years ago
• aptnotes / tools
  Tools to interact with APTnotes reporting/index.
  ☆104Updated 4 years ago
• oasis-open / cti-python-stix2
  OASIS TC Open Repository: Python APIs for STIX 2
  ☆401Updated 5 months ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆41Updated 7 years ago
• InQuest / iocextract
  Defanged Indicator of Compromise (IOC) Extractor.
  ☆550Updated last year
• mitre-attack / attack-stix-data
  STIX data representing MITRE ATT&CK
  ☆461Updated last month
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆140Updated 4 years ago
• ksatvat / EXTRACTOR
  ☆82Updated 2 years ago
• sophos / yaraml_rules
  Security ML models encoded as Yara rules
  ☆212Updated 2 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆81Updated 7 years ago
• armbues / ioc_parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆439Updated 2 years ago
• aptresearch / datasets
  ☆25Updated 4 years ago
• oasis-open / cti-stix2-json-schemas
  OASIS TC Open Repository: Non-normative schemas and examples for STIX 2
  ☆128Updated 2 months ago
• opencybersecurityalliance / kestrel-lang
  Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
  ☆318Updated last year
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 5 years ago