Alternatives and similar repositories for tg-01-basics:

Users that are interested in tg-01-basics are comparing it to the libraries listed below

• CiscoSecurity / tr-05-api-module
  Threat Response API Module
  ☆10Updated last year
• sans-blue-team / freq.py
  Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…
  ☆124Updated 2 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 2 years ago
• Robicus / gse-study
  The gse-study repo was assembled to serve as a consolidated, and comprehensive, study solution for the SANS GSE exam.
  ☆25Updated 6 years ago
• DefensiveOrigins / ps-whitenoiseweb
  Powershell - web traffic whitenoise generator
  ☆46Updated 4 years ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆83Updated 4 years ago
• teamdfir / volatility-plugins-community
  Volatility plugins developed and maintained by the community
  ☆21Updated 4 months ago
• vertoforce / docker-sof-elk
  A dockerized version of the sof-elk project
  ☆11Updated 4 years ago
• dstaulcu / TA-Sigma-Searches
  A Splunk app with saved reports derived from Sigma rules
  ☆73Updated 6 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆25Updated 9 months ago
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• P4T12ICK / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆108Updated 4 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆53Updated 2 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆52Updated 4 years ago
• pe3zx / mthc
  All-in-one bundle of MISP, TheHive and Cortex
  ☆170Updated 2 years ago
• chaoticmachinery / frac_rift
  FRAC and RIFT
  ☆17Updated 5 years ago
• P4T12ICK / Sigma-Hunting-App
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆107Updated 4 years ago
• MHaggis / sysmon-splunk-app
  Sysmon Splunk App
  ☆46Updated 6 years ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• wadingthrulogs / Talks
  All my slides for any talks
  ☆23Updated 3 months ago
• Jt3kt / LogRhythm
  SmartResponse plugin development.
  ☆15Updated 5 years ago
• nerdiosity / DNSplice
  To parse ugly Microsoft DNS Logs....
  ☆40Updated 6 years ago
• SMAPPER / NXLog-AutoConfig
  ☆48Updated 4 years ago
• mformal / FOR508_Index
  FOR508 Index - GCFA
  ☆19Updated 6 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• markjx / search2018
  Tools to search through massive amounts of data
  ☆21Updated 2 months ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 3 years ago