Alternatives and similar repositories for CSI-SIEM

Users that are interested in CSI-SIEM are comparing it to the libraries listed below

• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆128Updated 5 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆62Updated 2 months ago
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆59Updated 4 years ago
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆56Updated 4 years ago
• NettleSec / TriOp
  Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries
  ☆52Updated 3 years ago
• qeeqbox / mitre-visualizer
  🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
  ☆102Updated 3 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆79Updated 3 months ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆128Updated 3 years ago
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆88Updated 5 years ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆93Updated 2 years ago
• BushidoUK / CTI-Lexicon
  Dictionary of CTI-related acronyms, terms, and jargon
  ☆146Updated 2 months ago
• qeeqbox / seahorse
  ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)
  ☆46Updated 4 years ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆258Updated 2 years ago
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆36Updated last year
• StevenD33 / Lab-DFIR-SOC
  ☆69Updated 4 years ago
• HASH1da1 / Gotanda
  Gotanda is browser Web Extension for OSINT.
  ☆194Updated 2 years ago
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆103Updated last year
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆262Updated 3 years ago
• sandflysecurity / sandfly-setup
  Sandfly Security Agentless Compromise and Intrusion Detection System For Linux
  ☆88Updated last week
• dcarlin / Blue-Team-Tools
  This contains a list of Blue Team Tools that I use daily, and have stored here for reference.
  ☆34Updated 8 years ago
• corelight / threat-hunting-guide
  ☆57Updated 3 years ago
• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆71Updated 5 years ago
• threat-hunting / awesome-threat-intelligence
  A curated list of Awesome Threat Intelligence resources
  ☆50Updated 7 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆76Updated 5 years ago
• CarlosLannister / awesome-autopsy-plugins
  A list of Autopsy awesome plugins.
  ☆76Updated 4 years ago
• spaceraccoon / manuka
  A modular OSINT honeypot for blue teamers
  ☆340Updated 2 years ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆34Updated 3 years ago
• qeeqbox / woodpecker
  Custom security distro for remote penetration testing
  ☆55Updated 4 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆94Updated this week
• dfircheatsheet / dfircheatsheet.github.io
  ☆65Updated 4 months ago