G-Research / siembol
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
☆206Updated 2 weeks ago
Alternatives and similar repositories for siembol:
Users that are interested in siembol are comparing it to the libraries listed below
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆148Updated 3 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆248Updated 3 weeks ago
- Tool to discover external and internal network attack surface☆195Updated 11 months ago
- Cloud Security Operations Orchestrator☆184Updated last year
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆126Updated 2 weeks ago
- Threat Hunting & Incident Investigation with Osquery☆207Updated 3 years ago
- PatrowlHears - Vulnerability Intelligence Center / Exploits☆163Updated last week
- Cisco Orbital - Osquery queries by Talos☆132Updated 7 months ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …☆165Updated 10 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆149Updated last month
- Threat Hunting tool about Sysmon and graphs☆331Updated last year
- ☆125Updated last year
- This program exports MITRE ATT&CK framework in ELK dashboard☆78Updated 2 years ago
- Convert Sigma rules to Wazuh rules☆64Updated last year
- Sublime rules for email attack detection, prevention, and threat hunting.☆298Updated this week
- Dorothy is a tool to test security monitoring and detection for Okta environments☆181Updated 8 months ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆187Updated 3 years ago
- A curated list of awesome things related to TheHive & Cortex☆177Updated 3 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆261Updated 2 years ago
- Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…☆118Updated last month
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆184Updated 2 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 2 years ago
- 🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …☆71Updated last year
- A python package for use in generating fake data for SOC and security automation.☆168Updated last month
- Cyber Incident Response Team Playbook Battle Cards☆373Updated 11 months ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- A collection of intelligence about Log4Shell and its exploitation activity.☆183Updated 3 years ago
- A CALDERA plugin☆76Updated last month
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆63Updated last year