Alternatives and similar repositories for sans-index-generator:

Users that are interested in sans-index-generator are comparing it to the libraries listed below

• activecm / threat-tools
  Tools for simulating threats
  ☆181Updated last year
• msraju / Incident-Response-Playbooks
  ☆42Updated 2 years ago
• MarkBaggett / 504lab
  Distribution of the SANS SEC504 Windows Cheat Sheet Lab
  ☆70Updated 4 years ago
• ethack / tht
  Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
  ☆134Updated last week
• blueteamvillage / Project-Obsidian-DC30
  ☆41Updated 9 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated last year
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆63Updated 3 months ago
• secure-cake / rapid-endpoint-investigations
  Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
  ☆109Updated this week
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆65Updated last year
• SentineLabs / S1QL-Queries
  ☆57Updated last year
• CyberConTraining / DDTTX
  DDTTX Tabletop Trainings
  ☆28Updated 3 years ago
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆189Updated this week
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆84Updated last month
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆76Updated 9 months ago
• Resistor52 / DockerCrashCourse
  Docker Crash Course: How to containerize your favorite security tools
  ☆27Updated last year
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆37Updated 2 years ago
• Bert-JanP / SecScripts
  Security Scripts and Sources for daily usage.
  ☆54Updated last month
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆65Updated 8 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆98Updated last month
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆117Updated last year
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆75Updated 4 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆129Updated 2 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆25Updated 10 months ago
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆54Updated 5 months ago
• Purp1eW0lf / quickforensics
  ☆33Updated 2 years ago
• 0sm0s1z / Voltaire
  Web application to create indexes for GIAC certification examinations.
  ☆135Updated last year
• strozfriedberg / greppin-logs
  2021 SANS DFIR Summit: Greppin' Logs
  ☆21Updated 3 years ago
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆109Updated 3 months ago
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆82Updated 4 months ago