ExabeamLabs / Content-Library-CIM2Links
☆23Updated 2 weeks ago
Alternatives and similar repositories for Content-Library-CIM2
Users that are interested in Content-Library-CIM2 are comparing it to the libraries listed below
Sorting:
- Convert Sigma rules to LogRhythm searches☆21Updated 3 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆52Updated 2 years ago
- This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…☆71Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆151Updated 2 months ago
- OSSEM Data Dictionaries☆60Updated 4 months ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆110Updated 5 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- Sigma Detection Rule Repository☆88Updated 4 years ago
- Library of threat hunts to get any user started!☆44Updated 4 years ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆121Updated 4 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆188Updated 4 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆113Updated last month
- OSSEM Common Data Model☆55Updated 2 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last month
- Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.☆58Updated 5 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆63Updated 2 years ago
- Workflows for Shuffle☆23Updated 2 years ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Updated 4 years ago
- ☆95Updated 2 years ago
- ☆34Updated 4 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- ☆77Updated 5 years ago
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- ☆54Updated 3 years ago
- A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset☆33Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)☆33Updated last year