Alternatives and similar repositories for ChooseYourSIEMAdventure:

Users that are interested in ChooseYourSIEMAdventure are comparing it to the libraries listed below

• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 3 months ago
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆38Updated 3 years ago
• CyberSift / OSQUERY-PACKS
  Osquery Packs we use for customer security hardening
  ☆12Updated 4 months ago
• aarju / Kibana_ForensicDashboards
  Dashboards for conducting forensic investigation using windows events in Kibana
  ☆17Updated 5 years ago
• TheHive-Project / docs
  Official documentation for TheHive Project applications
  ☆21Updated last year
• cado-security / CloudAndContainerCompromiseSimulator
  Simulates a compromise in a cloud and container environment
  ☆32Updated 2 months ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆14Updated 4 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆54Updated 7 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated 2 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆21Updated 2 years ago
• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆28Updated 10 months ago
• RiverGumSecurity / RegEx
  ☆21Updated 3 years ago
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆33Updated 3 years ago
• cado-security / AWS_EKS_Cluster_Forensics
  AWS EKS Cluster Forensics
  ☆23Updated 3 years ago
• Shuffle / shuffle-docs
  Documentation used for Shuffle
  ☆19Updated this week
• jafarspalace / Crowdstrike-Falcon-Scripts
  Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation
  ☆22Updated 2 months ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 5 years ago
• HASecuritySolutions / TacticalDataHandlingatScalewithLogstash
  Contains log samples and configuration files for the Tactical Data Handling at Scale with Logstash course
  ☆11Updated 5 years ago
• cudeso / CSIRT-Jump-Bag
  CSIRT Jump Bag
  ☆27Updated 9 months ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆47Updated last year
• weslambert / securityonion-misp
  ☆34Updated 4 years ago
• NextronSystems / thunderstorm-collector
  THOR Thunderstorm Collectors
  ☆24Updated last week
• capesstack / capes-docker
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Updated 3 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆49Updated 5 months ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆38Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆53Updated 4 years ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• kanecain1981 / SANS_Index_Helper_Tool
  Python command line tool used for generating GIAC Certification indexes.
  ☆25Updated last year
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆27Updated 11 months ago