Alternatives and similar repositories for CSI-SIEM

Users that are interested in CSI-SIEM are comparing it to the libraries listed below

• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆127Updated 5 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆63Updated 2 weeks ago
• StevenD33 / Lab-DFIR-SOC
  ☆70Updated 4 years ago
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆59Updated 4 years ago
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆55Updated 3 years ago
• threat-hunting / awesome-threat-intelligence
  A curated list of Awesome Threat Intelligence resources
  ☆50Updated 7 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated last month
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆102Updated last year
• qeeqbox / mitre-visualizer
  🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
  ☆105Updated 3 years ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆128Updated 2 years ago
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆85Updated 5 years ago
• NettleSec / TriOp
  Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries
  ☆49Updated 2 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆93Updated 2 weeks ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆92Updated 2 years ago
• HASH1da1 / Gotanda
  Gotanda is browser Web Extension for OSINT.
  ☆196Updated 2 years ago
• alb-uss / SECMON
  SECMON is a web-based tool for the automation of infosec watching and vulnerability management with a web interface.
  ☆219Updated 3 years ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆256Updated 2 years ago
• qeeqbox / seahorse
  ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)
  ☆47Updated 4 years ago
• davidonzo / apiosintDS
  On demand query API for https://github.com/davidonzo/Threat-Intel project.
  ☆58Updated last year
• dcarlin / Blue-Team-Tools
  This contains a list of Blue Team Tools that I use daily, and have stored here for reference.
  ☆34Updated 8 years ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆67Updated 2 months ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆49Updated last year
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆76Updated 5 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆40Updated 2 years ago
• BushidoUK / CTI-Lexicon
  Dictionary of CTI-related acronyms, terms, and jargon
  ☆145Updated 2 weeks ago
• CarlosLannister / awesome-autopsy-plugins
  A list of Autopsy awesome plugins.
  ☆75Updated 3 years ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• bobbycin / Kali-Purple
  ☆53Updated 2 years ago
• qeeqbox / raven
  Advanced Cyber Threat Map (Simplified, customizable, responsive and optimized)
  ☆207Updated 2 years ago