Alternatives and similar repositories for SIEM-Cheat-Sheet:

Users that are interested in SIEM-Cheat-Sheet are comparing it to the libraries listed below

• LetsDefend / Phishing-Email-Analysis
  Useful resources about phishing email analysis
  ☆83Updated 3 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆65Updated 2 years ago
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆125Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 7 months ago
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS
  ☆33Updated 5 months ago
• adanalvarez / AWS-malware-lab
  Creation of a laboratory for malware analysis in AWS
  ☆96Updated 2 years ago
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆77Updated 3 years ago
• maysarax / SOC
  ☆21Updated 5 years ago
• dahvidschloss / CRASH
  Completely Risky Active-Directory Simulation Hub
  ☆99Updated last year
• MalTrakLab / purple-team-cloud-lab
  Cloud-based AD lab created to help you test real attacks in a controlled environment and create detection rules for them
  ☆28Updated last year
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆82Updated 5 months ago
• isherwood-sec / detection-engineering
  ☆48Updated last week
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆174Updated 2 years ago
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆85Updated last year
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆88Updated 6 months ago
• LetsDefend / incident-response-playbooks
  ☆175Updated last year
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated 11 months ago
• 0xph03n1x / eCTHPv2
  Collection of scripts and tools related to the eCTHPv2 exam by INE.
  ☆14Updated 2 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆66Updated 10 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆123Updated last year
• MalwareCube / Email-IOC-Extractor
  A Python script for analyzing email files to extract IP addresses, URLs, headers, and attachments, with functionalities for defanging IPs…
  ☆21Updated 6 months ago
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆32Updated 2 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆199Updated 2 months ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆106Updated last year
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆55Updated 2 years ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆152Updated 5 months ago
• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆52Updated last year
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year