177 Open source projects that are alternatives of or similar to Dovehawk

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

Bringing you the best of the worst files on the Internet.

🚌 The missing link to connect open-source threat intelligence tools.

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Capture passwords of login attempts on non-existent and disabled accounts.

Signature base for my scanner tools

Explore Indicators of Compromise Automatically

A toolkit for Security Researchers

A helper to run OSINT queries & manage results continuously

Malware Sample Sources

Personal compilation of APT malware from whitepaper releases, documents and own research

Threat research and reporting from IronNet's Threat Research Teams

Find phishing kits which use your brand/organization's files and image.

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Microsoft Sentinel SOC Operations

Clusters and elements to attach to MISP events or attributes (like threat actors)

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

Utilities for Sysmon

Don't Just Search OSINT. Sweep It.

Tracking APT IOCs

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

The Ultimate OSINT and Threat Hunting Framework

Threat Hunting queries for various attacks

Kaspersky's GReAT KLara

Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Real-time HTTP Intrusion Detection

Extract and aggregate threat intelligence.

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

All-in-one bundle of MISP, TheHive and Cortex

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

#ThreatHunting #DFIR #Malware #Detection Mind Maps

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A simple threat hunting tool based on osquery, Salt Open and Cymon API

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

recon-ng modules for Censys

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

PatrowlHears - Vulnerability Intelligence Center / Exploits

Your Everyday Threat Intelligence

FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic

A browser extension for OSINT search

A repository of sysmon configuration modules

Imports Alienvault OTX pulses to a MISP instance

The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).

🔍 Mindmaps for threat hunting - work in progress.

Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulation.

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

Real-time Packet Observation Tool

Malcom - Malware Communications Analyzer

Defanged Indicator of Compromise (IOC) Extractor.

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

🐺 Malware analysis platform

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.