Alternatives and similar repositories for qradar-sample-apps

Users that are interested in qradar-sample-apps are comparing it to the libraries listed below

• coolacid / docker-misp
  A (nearly) production ready Dockered MISP
  ☆232Updated last year
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆67Updated last year
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆82Updated last year
• ibmresilient / resilient-community-apps
  Source code for IBM SOAR Apps that are available on our App Exchange
  ☆92Updated this week
• swimlane / soc-faker
  A python package for use in generating fake data for SOC and security automation.
  ☆169Updated 4 months ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆82Updated 2 months ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆139Updated last month
• traut / stixview
  STIX2 graph visualisation library in JS
  ☆90Updated 3 weeks ago
• StamusNetworks / suricata-analytics
  ☆35Updated 5 months ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆55Updated this week
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆51Updated 10 months ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆122Updated 4 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆108Updated last year
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆57Updated 3 years ago
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆13Updated 4 years ago
• CrowdStrike / caracara
  Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDK
  ☆38Updated 3 weeks ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆151Updated 4 months ago
• Shuffle / openapi-apps
  Swagger/ OpenAPI specifications for security products and services
  ☆78Updated 3 weeks ago
• SecurityNik / Data-Science-and-ML
  ☆40Updated 3 months ago
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆53Updated 2 weeks ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated 2 years ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆91Updated 4 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆135Updated last year
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆38Updated 2 years ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆114Updated 3 months ago
• stahler / QRadar
  Using QRadar API
  ☆20Updated 7 years ago
• HASecuritySolutions / Presentations
  ☆132Updated last year
• ExabeamLabs / Content-Doc
  ☆126Updated last year
• splunk / contentctl
  Splunk Content Control Tool
  ☆114Updated last week