Alternatives and similar repositories for SIEM-Cheat-Sheet:

Users that are interested in SIEM-Cheat-Sheet are comparing it to the libraries listed below

• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• LetsDefend / Phishing-Email-Analysis
  Useful resources about phishing email analysis
  ☆81Updated last month
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 6 months ago
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆85Updated last year
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆125Updated 2 years ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆99Updated last year
• LetsDefend / incident-response-playbooks
  ☆170Updated last year
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆77Updated 3 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆65Updated 9 months ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆74Updated 4 months ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆107Updated last year
• mamun-sec / decap
  ☆34Updated last year
• isherwood-sec / detection-engineering
  ☆46Updated 3 weeks ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆112Updated last year
• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆52Updated 11 months ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆147Updated 4 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆118Updated 11 months ago
• archanchoudhury / Detection-Rule-Dump
  This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.
  ☆38Updated 3 years ago
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆173Updated 2 years ago
• AttackIQ / DetectIQ
  ☆101Updated this week
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆76Updated 9 months ago
• deFr0ggy / NightOwl
  An offline Phishing Email Analyzer. Enabling non-techies to analyze phishing emails automatically!
  ☆59Updated last year
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆188Updated last month
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆194Updated 8 months ago
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆83Updated 4 months ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS
  ☆32Updated 4 months ago
• maysarax / SOC
  ☆21Updated 5 years ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆153Updated 9 months ago