949 Open source projects that are alternatives of or similar to Pockint

Catalyst is an open source SOAR system that helps to automate alert handling and incident response processes

Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The results are presented in a Web layer to help defenders identify outliers and suspicious behavior on corporate environments.

An advanced tool for email reconnaissance

Yar is a tool for plunderin' organizations, users and/or repositories.

A Tool for Domain Flyovers

No description or website provided.

FAME Automates Malware Evaluation

Malcom - Malware Communications Analyzer

A curated list of tools for incident response

Smart OSINT collection of common IOC types

Your Everyday Threat Intelligence

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

incident response scripts

An OSINT tool to find contacts in order to report security vulnerabilities.

OSINT Project

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Cortex Analyzers Repository

A simple way to know if you are on the list of major security breaches like "HIBP", but it is specific for Iran.

The CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.

Python API Client for TheHive

DFIRTrack - The Incident Response Tracking Application

RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.

Related subdomains finder

Carve file metadata from NTFS index ($I30) attributes

Multi source CVE/exploit parser.

Docker configurations for TheHive, Cortex and 3rd party tools

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Incident Response - Fast suspicious file finder

DDTTX Tabletop Trainings

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

VirusTotal Wanna Be - Now with 100% more Hipster

Invoke-LiveResponse

Find leaked emails with your passwords

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!

Trace Labs OSINT Linux Distribution based on Kali.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Singularity: Application containers for Linux

Tool made to automate tasks of pentesting.

Repo replaced by cogsec-collaborative/AMITT

Everything related to Linux Forensics

Warning lists to inform users of MISP about potential false-positives or other information in indicators

Tool to automate common OSINT tasks

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

🔐 Security advisories as a simple composer exclusion list, updated daily

Lightweight note taking client for Simplenote or Standard Notes (or simply local storage)

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Fast and efficient osquery management

A high performance offensive security tool for reconnaissance and vulnerability scanning

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

Zero-cost state-machine library for robust, testable and portable user interfaces (most machines compile ~1-2KB)

🔐 Docker Container for Penetration Testing & Security

A vulnerable iOS App with Security Challenges for the Security Researcher inside you.

This is not an official Facebook product, and is not affiliated with, or sponsored or endorsed by, Facebook.

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders

Portable .NET library for reading/writing xaml files.

Windows one line commands that make life easier, shortcuts and command line fu.