Alternatives and similar repositories for mpsiemlib

Users that are interested in mpsiemlib are comparing it to the libraries listed below

• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated 2 years ago
• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆39Updated 6 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆37Updated 3 months ago
• StevenD33 / Lab-DFIR-SOC
  ☆70Updated 4 years ago
• bi-zone / triage
  A free data collection and YARA scanning tool for cybersecurity incident investigation, compromise assessment and threat hunting
  ☆18Updated last year
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆100Updated 2 years ago
• The-DFIR-Report / Yara-Rules
  ☆78Updated 3 months ago
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆93Updated 6 months ago
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆150Updated 4 months ago
• k-sec-tools / ExchangeFilter
  ☆20Updated 4 years ago
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆36Updated last year
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆78Updated 3 years ago
• gajos112 / Digital-Forensics
  ☆38Updated 4 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆57Updated 10 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆92Updated last year
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆57Updated 7 months ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆175Updated last year
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆157Updated last year
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆156Updated 4 years ago
• Defenders-Guide / TheDefendersGuide
  The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson
  ☆159Updated 2 years ago
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆65Updated 3 years ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆52Updated last month
• MHaggis / notes
  Full of public notes and Utilities
  ☆129Updated 10 months ago
• tobor88 / PowerShell-Blue-Team
  Collection of PowerShell functinos and scripts a Blue Teamer might use
  ☆89Updated 2 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆90Updated 4 years ago
• cdefid / TheHiveIRPlaybook
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Updated 5 years ago
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆58Updated this week
• dfir-scripts / siftgrab
  ☆67Updated last month
• InfoSecInnovations / What2Log
  ☆43Updated 3 years ago
• swimlane / atomic-operator
  A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
  ☆137Updated last year