Alternatives and similar repositories for mpsiemlib

Users that are interested in mpsiemlib are comparing it to the libraries listed below

• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated 2 years ago
• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆38Updated 2 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆35Updated 2 months ago
• giorgioditizio / APTs-database
  A repository with data about APTs
  ☆13Updated 2 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆69Updated 4 years ago
• k-sec-tools / ExchangeFilter
  ☆20Updated 4 years ago
• The-DFIR-Report / Yara-Rules
  ☆72Updated last week
• signorrayan / Splunk-Threat-Hunting
  This repository contains Splunk queries to hunt some anomalies
  ☆44Updated 3 years ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆156Updated 3 years ago
• bi-zone / triage
  A free data collection and YARA scanning tool for cybersecurity incident investigation, compromise assessment and threat hunting
  ☆17Updated 10 months ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆72Updated last week
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆162Updated 10 months ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆99Updated last year
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆94Updated 2 months ago
• Security-Experts-Community / open-xp-rules
  Открытый репозиторий с правилами на языке eXtraction and Processing (XP)
  ☆26Updated 4 months ago
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆35Updated last year
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆136Updated 6 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆90Updated 10 months ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆149Updated 2 weeks ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆120Updated 2 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• juaromu / wazuh
  ☆19Updated 3 years ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆41Updated last month
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆56Updated 3 months ago
• Information-Warfare-Center / CSI-SIEM
  CSI SIEM
  ☆110Updated 2 years ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆155Updated 10 months ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆67Updated last week
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 3 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆147Updated 4 months ago
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆160Updated 7 months ago