Alternatives and similar repositories for Threat-Hunting-with-Elastic-Stack:

Users that are interested in Threat-Hunting-with-Elastic-Stack are comparing it to the libraries listed below

• PacktPublishing / Incident-Response-with-Threat-Intelligence
  Incident Response with Threat Intelligence, published by Packt
  ☆52Updated 9 months ago
• Bert-JanP / SecScripts
  Security Scripts and Sources for daily usage.
  ☆51Updated this week
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆63Updated last year
• AttackIQ / DetectIQ
  ☆94Updated this week
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆78Updated last year
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆62Updated last month
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated last year
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆64Updated 7 months ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆88Updated 4 years ago
• CTI-Driven / Advanced-Threat-Hunting-Ransomware-Groups-Affiliates
  Advanced Threat Hunting: Ransomware Group
  ☆18Updated last month
• MISP / misp-playbooks
  MISP Playbooks
  ☆182Updated last month
• strandjs / ClassLabs
  ☆55Updated 3 years ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆102Updated last year
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆75Updated 2 years ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆48Updated last year
• utilsec / QuickStart-Guides
  ☆42Updated last year
• utilsec / ICS_OT_Intro_Course_Resources
  ☆49Updated last year
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated last year
• activecm / threat-tools
  Tools for simulating threats
  ☆180Updated last year
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆52Updated 3 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆116Updated 9 months ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 4 months ago
• fr0gger / JupyterUniverse
  Jupyter Univere is a search engine for all infosec jupyter notebooks
  ☆24Updated last month
• tsale / EDR-Telemetry-Website
  ☆72Updated 2 weeks ago
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆67Updated 2 months ago
• CTI-Driven / Microsoft-ASR-to-MITRE-ATTACK-Mapping-Project
  This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…
  ☆24Updated last month
• center-for-threat-informed-defense / top-attack-techniques
  Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…
  ☆116Updated 5 months ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆52Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆151Updated 7 months ago
• archanchoudhury / Detection-Rule-Dump
  This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.
  ☆36Updated 3 years ago