Alternatives and similar repositories for go-cti:

Users that are interested in go-cti are comparing it to the libraries listed below

• bradleyjkemp / sigma-go
  A Go implementation and parser for Sigma rules.
  ☆86Updated 6 months ago
• mitre / atomic
  A MITRE Caldera plugin
  ☆42Updated 4 months ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆62Updated 11 months ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago
• freetaxii / libstix2
  APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)
  ☆53Updated 3 months ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆61Updated 3 years ago
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆49Updated 2 years ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆55Updated 2 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 3 years ago
• cado-security / CloudAndContainerCompromiseSimulator
  Simulates a compromise in a cloud and container environment
  ☆32Updated 3 months ago
• mitre / stockpile
  A CALDERA plugin
  ☆75Updated 2 weeks ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆75Updated last year
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆101Updated 2 months ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆77Updated 2 years ago
• fkie-cad / socbed
  A Self-Contained Open-Source Cyberattack Experimentation Testbed
  ☆40Updated 3 weeks ago
• mitre / sandcat
  A CALDERA plugin
  ☆65Updated this week
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆19Updated 3 weeks ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆105Updated last year
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 8 months ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆80Updated 5 months ago
• sttor / awesome-osquery
  Osquery Resources
  ☆60Updated 5 years ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆126Updated 11 months ago
• Security-Onion-Solutions / securityonion-soc
  ☆52Updated this week
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆100Updated 2 months ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated 10 months ago
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 3 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆69Updated 3 years ago