Alternatives and similar repositories for mpsiemlib

Users that are interested in mpsiemlib are comparing it to the libraries listed below

• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated 2 years ago
• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆38Updated 4 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆36Updated last month
• giorgioditizio / APTs-database
  A repository with data about APTs
  ☆13Updated 2 years ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆91Updated last year
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆99Updated 2 years ago
• The-DFIR-Report / Yara-Rules
  ☆75Updated last month
• StevenD33 / Lab-DFIR-SOC
  ☆70Updated 4 years ago
• k-sec-tools / ExchangeFilter
  ☆20Updated 4 years ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆156Updated last year
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆54Updated this week
• Security-Experts-Community / open-xp-rules
  Открытый репозиторий с правилами на языке eXtraction and Processing (XP)
  ☆28Updated last month
• Yamato-Security / hayabusa-sample-evtx
  Sample evtx files to use for testing hayabusa detection rules
  ☆61Updated last year
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 4 months ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆155Updated last week
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆150Updated 2 months ago
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆162Updated last year
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆168Updated 11 months ago
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆57Updated 5 months ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 5 years ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆67Updated last month
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆103Updated 4 months ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆100Updated 3 years ago
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆164Updated last month
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆93Updated 4 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆152Updated 5 months ago
• mitre / training
  A CALDERA plugin
  ☆26Updated this week
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆89Updated 2 years ago
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆32Updated 3 years ago