Alternatives and similar repositories for qradar-sample-apps

Users that are interested in qradar-sample-apps are comparing it to the libraries listed below

• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆69Updated last year
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆13Updated 4 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆61Updated this week
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆131Updated 5 years ago
• SecurityNik / Data-Science-and-ML
  ☆45Updated 2 months ago
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆54Updated 4 months ago
• opencybersecurityalliance / oasis-open-project
  Information relating to the governance of the Open Cybersecurity Alliance (OCA) OASIS Open Project. https://github.com/opencybersecuritya…
  ☆29Updated 2 months ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Updated 3 years ago
• CrowdStrike / FDR
  Falcon Data Replicator
  ☆39Updated last month
• phantomcyber / phantom-apps
  Phantom Apps Repo
  ☆82Updated 4 years ago
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆68Updated last year
• traut / stixview
  STIX2 graph visualisation library in JS
  ☆95Updated this week
• k-bailey / detection-engineering-maturity-matrix
  ☆99Updated 3 years ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆87Updated 9 months ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆172Updated this week
• stahler / QRadar
  Using QRadar API
  ☆20Updated 7 years ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆84Updated 2 years ago
• CrowdStrike / caracara
  Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDK
  ☆45Updated last week
• ExabeamLabs / Content-Doc
  ☆128Updated 2 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated 2 years ago
• RealityNet / attack-coverage
  an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques
  ☆189Updated 3 years ago
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆65Updated 3 years ago
• swimlane / soc-faker
  A python package for use in generating fake data for SOC and security automation.
  ☆175Updated 11 months ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆62Updated last year
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆76Updated 5 years ago
• corelight / threat-hunting-guide
  ☆58Updated 3 years ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆159Updated 11 months ago
• splunk / attack_range_cloud
  Attack Range to test detection against nativel serverless cloud services and environments
  ☆35Updated 4 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆171Updated last week