Alternatives and similar repositories for TibetanBrownBear:

Users that are interested in TibetanBrownBear are comparing it to the libraries listed below

• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 3 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆55Updated 3 months ago
• marjatech / threatfox2misp
  Creating a Feed of MISP Events from ThreatFox (by abuse.ch)
  ☆19Updated 3 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 3 years ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆88Updated 2 weeks ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆19Updated 4 years ago
• iknowjason / Velociraptor_Azure
  A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.
  ☆20Updated 4 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated 11 months ago
• MITRECND / mitrecnd.github.io
  MITRE Shield website
  ☆19Updated 3 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 3 years ago
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 3 years ago
• Jrotenberger / Powershell-IR-Scripts
  ☆39Updated 5 years ago
• 00010111 / smbtimeline
  ☆34Updated 6 months ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• newcontext-oss / opencti-terraform
  Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP
  ☆31Updated last year
• airbus-cert / timeliner
  A rewrite of mactime, a bodyfile reader
  ☆37Updated 8 months ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• cudeso / CSIRT-Jump-Bag
  CSIRT Jump Bag
  ☆26Updated last year
• jschicht / Indx2Csv
  An advanced parser for INDX records
  ☆27Updated 5 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• open-source-dfir / slack
  Information about the open-source-dfir slack community
  ☆29Updated last year
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 2 years ago
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 4 years ago
• gitunique / cti-scripts
  Scripts for accessing and transforming cyber threat intelligence
  ☆26Updated 9 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• airbus-cert / Splunk-ETW
  A Splunk Technology Add-on to forward filtered ETW events.
  ☆30Updated 4 years ago
• ashwin-patil / threat-hunting-with-notebooks
  Repository with Sample threat hunting notebooks on Security Event Log Data Sources
  ☆63Updated 2 years ago
• weslambert / securityonion-misp
  ☆34Updated 4 years ago
• ANSSI-FR / bits_parser
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆75Updated 2 months ago