Alternatives and similar repositories for catapult

Users that are interested in catapult are comparing it to the libraries listed below

• peasead / elastic-container
  Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine
  ☆521Updated last month
• ccdcoe / Providentia
  Providentia is a tool to manage (mostly) virtualized infrastructure knowledge. Born out of necessity to build the world's largest live-fi…
  ☆24Updated last year
• mitre / caldera-ot
  MITRE Caldera™ for OT Plugins & Capabilities
  ☆231Updated 2 weeks ago
• iknowjason / AutomatedEmulation
  An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…
  ☆204Updated last month
• tclahr / uac
  UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …
  ☆1,220Updated 2 weeks ago
• ClarifiedSecurity / Providentia
  Providentia is a tool to manage cyber-exercise technical knowledge
  ☆17Updated 3 weeks ago
• hevnsnt / Awesome_Incident_Response
  Awesome Incident Response
  ☆283Updated 3 months ago
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆808Updated 3 weeks ago
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆255Updated last year
• Yamato-Security / EnableWindowsLogSettings
  Documentation and scripts to properly enable Windows event logs.
  ☆650Updated 3 months ago
• WithSecureLabs / LinuxCatScale
  Incident Response collection and processing scripts with automated reporting scripts
  ☆319Updated last year
• zeronetworks / BlueHound
  BlueHound - pinpoint the security issues that actually matter
  ☆758Updated 2 years ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆303Updated last week
• cert-advens / IRM
  ☆164Updated 2 months ago
• 0x4D31 / detection-and-response-pipeline
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆286Updated last year
• NUKIB / misp
  Docker image for MISP
  ☆137Updated this week
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆298Updated 11 months ago
• novateams / nova.core
  Ansible collection for roles and plugins
  ☆14Updated 3 weeks ago
• cmu-sei / GHOSTS
  GHOSTS is a realistic user simulation framework for cyber experimentation, simulation, training, and exercise
  ☆646Updated this week
• volexity / threat-intel
  Signatures and IoCs from public Volexity blog posts.
  ☆361Updated last month
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆168Updated last month
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆269Updated this week
• cert-orangecyberdefense / ransomware_map
  Map tracking ransomware, by OCD World Watch team
  ☆479Updated 10 months ago
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆298Updated last year
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆190Updated last week
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆201Updated 2 years ago
• vm32 / Linux-Incident-Response
  practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
  ☆405Updated 2 years ago
• SigmaHQ / pySigma
  Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
  ☆514Updated 3 weeks ago
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆307Updated this week
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Agentic Attack Tool
  ☆328Updated 2 weeks ago