Alternatives and similar repositories for CSI-SIEM

Users that are interested in CSI-SIEM are comparing it to the libraries listed below

• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆79Updated 5 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated 2 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆66Updated 4 years ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆120Updated 4 years ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆87Updated last year
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆54Updated 3 years ago
• threat-hunting / awesome-threat-intelligence
  A curated list of Awesome Threat Intelligence resources
  ☆47Updated 6 years ago
• dfircheatsheet / dfircheatsheet.github.io
  ☆66Updated 2 years ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆124Updated 2 years ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆251Updated 2 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆62Updated 2 years ago
• optiv / OSINT_Encyclopedia
  Your go-to resource for all things OSINT
  ☆173Updated last year
• Security-Onion-Solutions / securityonion-soc
  ☆53Updated last week
• InfoSecInnovations / project-fantastic
  ☆73Updated 2 years ago
• clairmont32 / VirusTotal-Tools
  Submits multiple domains to VirusTotal API
  ☆60Updated 3 years ago
• OpenSecureCo / Wazuh
  ☆31Updated 3 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆46Updated 2 months ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆45Updated last year
• dcarlin / Blue-Team-Tools
  This contains a list of Blue Team Tools that I use daily, and have stored here for reference.
  ☆33Updated 7 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆130Updated last year
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆65Updated last year
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆105Updated 3 years ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆109Updated 2 years ago
• pan-unit42 / wireshark-tutorial-Dridex-traffic
  pcaps for Wireshark tutorial about examining Dridex infection traffic
  ☆17Updated 4 years ago
• muteb / Hoarder
  This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …
  ☆202Updated 4 years ago
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆98Updated 10 months ago
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 5 years ago
• qeeqbox / woodpecker
  Custom security distro for remote penetration testing
  ☆53Updated 4 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago