Alternatives and similar repositories for code-examples

Users that are interested in code-examples are comparing it to the libraries listed below

• ExtraHop / threat-intelligence-toolkit
  Utility to automate generating and uploading STIX files to ExtraHop appliances via the REST API.
  ☆8Updated 10 months ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• PaloAltoNetworks / Splunk-Apps
  Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint sec…
  ☆107Updated 7 months ago
• CiscoSE / SnortBlocklistImporter
  This is a script to import Cisco Talos's IP Blacklist into a Tag (Host Group) within Stealthwatch. This will also optionally create a Cu…
  ☆11Updated 2 years ago
• PaloAltoNetworks / Skillets
  Skillets is the default holding place for useful Panhandler skillets. These are usually smaller one-off bits that may not require their o…
  ☆11Updated 5 years ago
• sans-blue-team / sec530-wiki
  ☆54Updated 3 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• opendns / investigate-examples
  Coding examples for the OpenDNS Investigate API
  ☆24Updated 5 years ago
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• CiscoSecurity / fp-05-firepower-cef-connector-arcsight
  Cisco eStreamer client
  ☆24Updated 2 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆52Updated 8 months ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• PaloAltoNetworks / minemeld-docker
  Official Palo Alto Networks MineMeld docker
  ☆17Updated 5 years ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆73Updated last week
• rapid7 / insightconnect-plugins
  Plugin source code for the InsightConnect SOAR product, developer documentation at https://docs.rapid7.com/insightconnect/getting-started
  ☆67Updated this week
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• Security-Onion-Solutions / securityonion-docs
  ☆88Updated this week
• CiscoPSIRT / openVulnAPI
  Documentation and Tools for Cisco's PSIRT openVuln API
  ☆108Updated last month
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆55Updated 8 months ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆131Updated 9 months ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆57Updated 3 years ago
• phantomcyber / phantom-apps
  Phantom Apps Repo
  ☆83Updated 3 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆41Updated last year
• fortinet / fortios-ips-snort
  Convert snort IPS signatures to FortiGate custom IPS signature syntax.
  ☆39Updated 4 months ago
• B2dfir / Free-Incident-Response-Management-and-Documentation-Workbook
  A free incident response management and documentation workbook
  ☆24Updated 6 years ago
• mitre / response
  A CALDERA plugin for autonomous incident response
  ☆26Updated last week
• robertcsapo / cisco-talos-tcpwrapper
  Sync /etc/hosts.deny with Cisco Talos IP Blacklist
  ☆11Updated 6 years ago
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆12Updated 4 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆26Updated last year