LogCraftIO / logcraft-cliLinks
Detection-as-Code CI/CD pipeline for modern security operations (SIEM, EDR, XDR, ...)
☆22Updated 5 months ago
Alternatives and similar repositories for logcraft-cli
Users that are interested in logcraft-cli are comparing it to the libraries listed below
Sorting:
- ☆28Updated this week
- ☆10Updated last month
- MISP to Sentinel integration☆74Updated 2 weeks ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆34Updated 2 years ago
- A repository of my own Sigma detection rules.☆162Updated last year
- Dettectinator - The Python library to your DeTT&CT YAML files.☆117Updated 6 months ago
- ☆39Updated 2 years ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆54Updated 2 years ago
- ☆53Updated last year
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 5 years ago
- SentinelOne STAR Rules☆69Updated 8 months ago
- Splunk Content Control Tool☆119Updated this week
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last month
- ☆45Updated 2 years ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆51Updated 5 months ago
- A tool that allows you to document and assess any security automation in your SOC☆47Updated 11 months ago
- ☆87Updated 7 months ago
- Knowing which rule should trigger according to the redcannary test☆11Updated 10 months ago
- Advanced Threat Hunting: Ransomware Group☆29Updated 3 months ago
- ☆65Updated 2 years ago
- A preconfigured Velociraptor triage collector☆55Updated 2 weeks ago
- ☆98Updated 3 years ago
- Cybersecurity Incident Response Plan☆108Updated 5 years ago
- An opensource sigma conversion tool built using pysigma☆141Updated last week
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆85Updated last year
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆66Updated last year
- ☆94Updated 2 months ago
- Web based S1 query navigator for one-click threat hunting☆24Updated 4 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated 11 months ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆31Updated 3 weeks ago