OSSEM Data Dictionaries
☆65Jan 22, 2025Updated last year
Alternatives and similar repositories for OSSEM-DD
Users that are interested in OSSEM-DD are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OSSEM Common Data Model☆56Sep 20, 2022Updated 3 years ago
- OSSEM Detection Model☆184Oct 11, 2022Updated 3 years ago
- OSSEM Modular☆27Jun 29, 2020Updated 5 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆39Aug 18, 2022Updated 3 years ago
- ☆19Sep 3, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Open Source Security Events Metadata (OSSEM)☆1,293Feb 27, 2023Updated 3 years ago
- Generic Signature Format for SIEM Systems☆14Oct 27, 2021Updated 4 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Apr 24, 2026Updated 2 weeks ago
- ☆53Mar 4, 2019Updated 7 years ago
- Zeek package to create JSON formatted logs to stream into data analysis systems.☆31Dec 3, 2025Updated 5 months ago
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Jul 13, 2020Updated 5 years ago
- ☆84Feb 4, 2026Updated 3 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆82Apr 29, 2026Updated last week
- Zeek support for Community ID flow hashing.☆37Jul 11, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations☆12Dec 9, 2022Updated 3 years ago
- Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.☆593Jan 22, 2025Updated last year
- Re-play Security Events☆1,746Mar 20, 2024Updated 2 years ago
- OCSF Schema Validation☆12Updated this week
- Elastic version of SOC prime watcher rules☆30Oct 14, 2024Updated last year
- Collection of useful, up to date, Carbon Black Response Queries☆85Oct 23, 2020Updated 5 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema logs☆12Apr 24, 2026Updated 2 weeks ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆38Feb 23, 2026Updated 2 months ago
- Collect autorun records from running system☆61Jan 21, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Common Malware Techniques☆13Mar 26, 2023Updated 3 years ago
- Building environments to replicate small networks and deploy applications☆333Jan 9, 2026Updated 4 months ago
- Home repo for documentation and links to resources☆12Jul 25, 2019Updated 6 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆75Jan 18, 2022Updated 4 years ago
- This content is analysis and research of the data sources currently listed in ATT&CK.☆413Sep 13, 2023Updated 2 years ago
- Download a Bunch of Malware for Demos and Testing☆13Sep 28, 2018Updated 7 years ago
- GitHub action for validating Microsoft Sentinel detection rules☆14May 22, 2023Updated 2 years ago
- Logs key Windows process performance metrics. #nsacyber☆69Dec 8, 2022Updated 3 years ago
- Windows Security Logging☆43Jul 17, 2022Updated 3 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Microsoft Threat Intelligence Security Tools☆1,966Updated this week
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Mar 10, 2023Updated 3 years ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆651Jun 19, 2024Updated last year
- MSTIC Notebook Components☆35Sep 4, 2025Updated 8 months ago
- A cybersecurity game in Azure Data Explorer☆175Jul 12, 2024Updated last year
- ☆18Jan 9, 2026Updated 4 months ago