Alternatives and similar repositories for logcraft-cli

Users that are interested in logcraft-cli are comparing it to the libraries listed below

• keyboardcrunch / SentinelOne-Query-Navigator
  Web based S1 query navigator for one-click threat hunting
  ☆19Updated 4 years ago
• LogRhythm-Labs / Sigma
  Convert Sigma rules to LogRhythm searches
  ☆21Updated 3 years ago
• stahler / QRadar
  Using QRadar API
  ☆20Updated 7 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆44Updated last year
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 3 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆46Updated 2 months ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆54Updated last year
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆72Updated 7 months ago
• WillOram / cyber-incident-management
  Notes on managing and coordinating the response to major cyber incidents
  ☆40Updated 5 years ago
• HASecuritySolutions / Sysmon-Manager
  This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler
  ☆12Updated 3 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆52Updated 2 years ago
• counteractive / incident-response-collector
  ☆16Updated 4 years ago
• joeavanzato / ThreatSim
  Threat Simulator for Enterprise Networks
  ☆14Updated 3 years ago
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆20Updated 4 months ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆38Updated 3 weeks ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆41Updated 3 weeks ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆81Updated 2 weeks ago
• SigmaHQ / pySigma-backend-insightidr
  ☆14Updated 8 months ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆46Updated 7 months ago
• SHolzhauer / elastic-tip
  Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …
  ☆27Updated 10 months ago
• frack113 / sigma_redcanaryco
  Knowing which rule should trigger according to the redcannary test
  ☆11Updated 6 months ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆57Updated 3 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 3 years ago
• swiftbird07 / IRIS-SOAR
  🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …
  ☆10Updated last year
• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆68Updated 4 years ago
• maartengoet / notebooks
  Jupyter notebooks
  ☆25Updated 4 years ago
• signorrayan / SplunkThreatHunting
  This repository contains Splunk queries to hunt some anomalies
  ☆42Updated 2 years ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆41Updated 4 years ago
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆52Updated this week
• quitehacker / MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOC
  The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…
  ☆23Updated 5 months ago