Alternatives and similar repositories for Content-Library-CIM1

Users that are interested in Content-Library-CIM1 are comparing it to the libraries listed below

• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated last month
• korniko98 / pivot-atlas
  ☆101Updated last month
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆108Updated last week
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆56Updated 3 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆100Updated last month
• mitre / atomic
  A MITRE Caldera plugin
  ☆49Updated 3 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆157Updated 8 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Updated 3 years ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆90Updated 2 months ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆54Updated 3 weeks ago
• certeu / droid
  A pySigma wrapper to manage detection rules.
  ☆44Updated this week
• cisagov / parsnip
  ☆74Updated 3 months ago
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆68Updated last year
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• juaromu / wazuh
  ☆20Updated 4 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 5 months ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆122Updated this week
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆169Updated last month
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆131Updated 9 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆114Updated 4 months ago
• runreveal / sigmalite
  ☆51Updated last month
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆31Updated last year
• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆46Updated last year
• M3NIX / sigmaio
  simple webapp for converting sigma rules into siem queries using the pySigma library
  ☆52Updated 2 years ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆37Updated last month
• center-for-threat-informed-defense / sensor-mappings-to-attack
  Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…
  ☆50Updated 7 months ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆128Updated 9 months ago