177 Open source projects that are alternatives of or similar to Klara

Extract and aggregate threat intelligence.

Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings

Real-time HTTP Intrusion Detection

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Clusters and elements to attach to MISP events or attributes (like threat actors)

A toolkit for Security Researchers

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

Find phishing kits which use your brand/organization's files and image.

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

🚌 The missing link to connect open-source threat intelligence tools.

#ThreatHunting #DFIR #Malware #Detection Mind Maps

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

A helper to run OSINT queries & manage results continuously

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

Utilities for Sysmon

Signature base for my scanner tools

Explore Indicators of Compromise Automatically

Threat Hunting queries for various attacks

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

Personal compilation of APT malware from whitepaper releases, documents and own research

recon-ng modules for Censys

Microsoft Sentinel SOC Operations

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

All-in-one bundle of MISP, TheHive and Cortex

PatrowlHears - Vulnerability Intelligence Center / Exploits

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Don't Just Search OSINT. Sweep It.

Capture passwords of login attempts on non-existent and disabled accounts.

Bringing you the best of the worst files on the Internet.

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Malware Sample Sources

Threat research and reporting from IronNet's Threat Research Teams

The Ultimate OSINT and Threat Hunting Framework

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Tracking APT IOCs

A simple threat hunting tool based on osquery, Salt Open and Cymon API

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

enpoint detection / live analysis & sandbox host / signatures quality test

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

My personal experience in Threat Hunting and knowledge gained so far.

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

The Hunting ELK

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Ayashige provides a list of suspicious newly updated domains as a JSON feed

⚔️MITRE ATT&CK Machinations in R

Leverage Sophos Central API

Defanged Indicator of Compromise (IOC) Extractor.

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

OpenCTI connectors

Best practices in threat intelligence

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

🐺 Malware analysis platform

Incident Response - Fast suspicious file finder

Malware hashes for open source projects.

A curses-style interface for automatic takedown notification based on MISP events.