3CORESec / testmynids.org

Related projects ⓘ

Alternatives and complementary repositories for testmynids.org

• socfortress / CoPilot
  SOCFortress CoPilot
  ☆208Updated this week
• NUKIB / misp
  Docker image for MISP
  ☆115Updated last week
• MISP / misp-docker
  A production ready Dockered MISP
  ☆166Updated this week
• socfortress / Wazuh-Rules
  Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!
  ☆594Updated 2 months ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆358Updated this week
• V1D1AN / S1EM
  This project is a SIEM with SIRP and Threat Intel, all in one.
  ☆410Updated 9 months ago
• socfortress / Playbooks
  Playbooks for SOC Analysts
  ☆143Updated last year
• mitre / caldera-ot
  MITRE Caldera™ for OT Plugins & Capabilities
  ☆193Updated last month
• juaromu / wazuh-opencti
  ☆33Updated last year
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆343Updated this week
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆150Updated 2 years ago
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆172Updated this week
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆85Updated 2 years ago
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆101Updated this week
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆113Updated last year
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆50Updated 3 weeks ago
• TheGroundZero / openvasreporting
  OpenVAS Reporting: Convert OpenVAS XML report files to reports
  ☆131Updated 3 months ago
• OpenCTI-Platform / docker
  OpenCTI Docker deployment helpers
  ☆160Updated this week
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆707Updated last week
• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆346Updated this week
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆283Updated 11 months ago
• TURROKS / CVE_Prioritizer
  Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…
  ☆527Updated last week
• sqall01 / LSMS
  Linux Security and Monitoring Scripts
  ☆318Updated last month
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆113Updated 4 months ago
• OpenSecureCo / Demos
  Repo Filled With Follow Along Guides
  ☆71Updated 2 years ago
• JSCU-NL / logging-essentials
  A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.
  ☆271Updated 3 years ago
• TonyPhipps / SIEM
  SIEM Tactics, Techiques, and Procedures
  ☆584Updated 2 weeks ago
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆202Updated last year
• coolacid / docker-misp
  A (nearly) production ready Dockered MISP
  ☆230Updated 9 months ago
• zeronetworks / BlueHound
  BlueHound - pinpoint the security issues that actually matter
  ☆712Updated last year