Alternatives and similar repositories for code-examples:

Users that are interested in code-examples are comparing it to the libraries listed below

• ExtraHop / threat-intelligence-toolkit
  Utility to automate generating and uploading STIX files to ExtraHop appliances via the REST API.
  ☆8Updated 7 months ago
• sans-blue-team / sec530-wiki
  ☆54Updated 3 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 3 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆25Updated 9 months ago
• CiscoSecurity / fp-05-firepower-cef-connector-arcsight
  Cisco eStreamer client
  ☆25Updated 2 years ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆52Updated 2 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• DefensiveOrigins / Training
  Defensive Origins Training Schedule
  ☆37Updated last year
• weslambert / securityonion-misp
  ☆34Updated 4 years ago
• activecm / devprof
  Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.
  ☆16Updated 5 years ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆32Updated 2 years ago
• jafarspalace / Crowdstrike-Falcon-Scripts
  Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation
  ☆22Updated 2 months ago
• cisagov / network-architecture-verification-and-validation
  The NAVV (Network Architecture Verification and Validation) tool creates a spreadsheet for network traffic analysis from PCAP data and Ze…
  ☆28Updated 8 months ago
• clausing / scripts
  ☆55Updated this week
• PaloAltoNetworks / minemeld-docker
  Official Palo Alto Networks MineMeld docker
  ☆17Updated 5 years ago
• LogRhythm-Labs / Sigma
  Convert Sigma rules to LogRhythm searches
  ☆20Updated 2 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• vmware-archive / cb-reporting
  Report Generation from the Carbon Black REST API
  ☆15Updated 2 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆78Updated last year
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• splunk / attack_range_cloud
  Attack Range to test detection against nativel serverless cloud services and environments
  ☆35Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆34Updated 2 years ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆45Updated 3 months ago
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆12Updated 3 years ago
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆28Updated last year
• PaloAltoNetworks / cortex-xql-queries
  Repository for Cortex XDR and Cortex XSIAM XQL queries and more!
  ☆23Updated 8 months ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆28Updated 10 months ago
• Security-Onion-Solutions / securityonion-docs
  ☆87Updated this week