Alternatives and similar repositories for Content-Library-CIM1

Users that are interested in Content-Library-CIM1 are comparing it to the libraries listed below

• korniko98 / pivot-atlas
  ☆94Updated last month
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆94Updated this week
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆58Updated 3 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆84Updated 3 months ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆128Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 9 months ago
• NVISOsecurity / nviso-cti
  ☆44Updated 2 months ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 2 years ago
• mitre / atomic
  A MITRE Caldera plugin
  ☆45Updated 9 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆79Updated 2 months ago
• center-for-threat-informed-defense / sensor-mappings-to-attack
  Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…
  ☆50Updated 2 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆80Updated last week
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆66Updated last year
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆126Updated 5 months ago
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆33Updated last year
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆51Updated 8 months ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 2 years ago
• cisagov / parsnip
  ☆74Updated last month
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆127Updated 4 months ago
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆122Updated 4 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆107Updated 2 weeks ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆70Updated last month
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆105Updated last week
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆157Updated 6 months ago
• runreveal / sigmalite
  ☆47Updated 6 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆176Updated 7 months ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆47Updated 4 months ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆84Updated last year
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆62Updated 7 months ago