Alternatives and similar repositories for mpsiemlib

Users that are interested in mpsiemlib are comparing it to the libraries listed below

• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated last year
• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆37Updated 2 weeks ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆36Updated last month
• StevenD33 / Lab-DFIR-SOC
  ☆67Updated 4 years ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated last year
• The-DFIR-Report / Yara-Rules
  ☆69Updated 4 months ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 3 years ago
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆34Updated 10 months ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆40Updated 2 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆85Updated 8 months ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆154Updated 3 years ago
• gajos112 / Digital-Forensics
  ☆38Updated 3 years ago
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆48Updated this week
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆32Updated 3 years ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆98Updated last year
• 00010111 / smbtimeline
  ☆35Updated 8 months ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆67Updated 3 years ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆153Updated 8 months ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆101Updated last year
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆148Updated 2 years ago
• The-DFIR-Report / cyberchef-recipes
  ☆19Updated 3 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago
• mattnotmax / DFIR-notes
  Random notes collected on the intertubes relating to DFIR
  ☆34Updated 2 years ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆24Updated 10 months ago
• gertjanbruggink / presentations
  This directory contains presentations and related materials of my speaking engagements. I also use this to record historical presentation…
  ☆17Updated 5 months ago
• PolitoInc / ELK-Hunting
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆66Updated 7 years ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆34Updated 2 months ago
• brimorlabs / KStrike
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆74Updated last year
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆103Updated last year
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 4 months ago