Alternatives and similar repositories for Content-Library-CIM1

Users that are interested in Content-Library-CIM1 are comparing it to the libraries listed below

• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• cisagov / parsnip
  ☆74Updated 3 months ago
• korniko98 / pivot-atlas
  ☆101Updated last month
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆107Updated 3 weeks ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• mitre / atomic
  A MITRE Caldera plugin
  ☆49Updated 3 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆100Updated 3 weeks ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated 2 weeks ago
• center-for-threat-informed-defense / sensor-mappings-to-attack
  Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…
  ☆50Updated 6 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆90Updated 2 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆157Updated 8 months ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Updated 3 years ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆52Updated this week
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆131Updated 8 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆113Updated 3 months ago
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆168Updated last month
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆28Updated 11 months ago
• juaromu / wazuh
  ☆20Updated 4 years ago
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆39Updated last week
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• nasbench / Eventlog_Compendium
  The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.
  ☆51Updated 8 months ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆67Updated last year
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆54Updated 2 months ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆120Updated 3 weeks ago
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆170Updated last month
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆119Updated 9 months ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆127Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆192Updated 11 months ago
• runreveal / sigmalite
  ☆52Updated 3 weeks ago