Alternatives and similar repositories for ChooseYourSIEMAdventure

Users that are interested in ChooseYourSIEMAdventure are comparing it to the libraries listed below

• corelight / raspi-corelight
  Corelight@Home script
  ☆44Updated last year
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆73Updated 3 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 4 years ago
• aacgood / Cortex-Analyzers
  A collection of Cortex Analyzers and Responders for TheHive/Cortex
  ☆13Updated 5 years ago
• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆29Updated last year
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆78Updated 4 years ago
• weslambert / securityonion-misp
  ☆36Updated 4 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 9 months ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆37Updated 3 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆108Updated last year
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆20Updated 5 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 5 years ago
• CyberSift / OSQUERY-PACKS
  Osquery Packs we use for customer security hardening
  ☆12Updated 3 months ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆106Updated last year
• defensivedepth / osquery-filters
  ☆34Updated 2 years ago
• corelight / threat-hunting-guide
  ☆53Updated 3 years ago
• corelight / zerologon
  Zeek package to detect Zerologon
  ☆11Updated 3 years ago
• d3sre / IntelligentProcessLifecycle
  The Intelligent Process Lifecycle of Active Cyber Defenders
  ☆33Updated 2 years ago
• pulsedive / certrss
  ☆119Updated 2 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆58Updated 3 years ago
• cado-security / AWS_EKS_Cluster_Forensics
  AWS EKS Cluster Forensics
  ☆23Updated 4 years ago
• vertexproject / synapse-quickstart
  Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.
  ☆47Updated 3 years ago
• thomaspatzke / elk-detection-lab
  An ELK environment containing interesting security datasets.
  ☆137Updated 5 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆20Updated 3 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• stahler / QRadar
  Using QRadar API
  ☆20Updated 7 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 3 years ago