Alternatives and similar repositories for cis-benchmarks

Users that are interested in cis-benchmarks are comparing it to the libraries listed below

• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 4 years ago
• martinsohn / CIS-Controls
  ☆19Updated 3 years ago
• swiftbird07 / IRIS-SOAR
  🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …
  ☆13Updated last year
• aws-samples / jupyter-notebook-for-incident-response
  A library of Incident Response notebooks using Jupyter. We will show how you can leverage pre-defined notebook files to guide your incide…
  ☆152Updated 2 years ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆49Updated last year
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆41Updated 2 years ago
• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆73Updated 5 years ago
• juaromu / wazuh-misp
  ☆20Updated 3 years ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆114Updated 4 months ago
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆54Updated 2 years ago
• BenjiTrapp / aws-threat-hunting
  Short deep dive into Threat Hunting on AWS
  ☆17Updated 2 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Updated 3 years ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆30Updated 2 years ago
• SHolzhauer / elastic-tip
  Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …
  ☆28Updated last year
• pulsedive / certrss
  ☆121Updated 2 weeks ago
• jbudacki / TTX-Template
  Table Top Exercise (TTX) for Computer Security Incident Response (CSIRT) teams. The templatized artifacts provided will hopefully help te…
  ☆44Updated 5 years ago
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆67Updated last year
• Truesec / CSIRT
  ☆21Updated 4 years ago
• socfortress / wazuh-mcp-server
  Repo to hold wazuh manager mcp server
  ☆74Updated 4 months ago
• lmakonem / ELK-SIEM-Ansible-Playbook
  Ansible Playbook to install the ELK Stack
  ☆44Updated 5 years ago
• SecurityBagel / VulnBagel
  A collection of dashboards, templates, API's and Power BI code for vulnerability management and analysis
  ☆24Updated last year
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆128Updated 10 months ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆37Updated 4 years ago
• juaromu / wazuh-opencti
  ☆41Updated 2 years ago
• OpenAEV-Platform / docker
  OpenAEV Docker deployment helpers
  ☆28Updated last week
• PaloAltoNetworks / minemeld-docker
  Official Palo Alto Networks MineMeld docker
  ☆17Updated 5 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• juaromu / wazuh-nmap
  ☆22Updated 3 years ago
• tropChaud / Cyber-Adversary-Heatmaps
  Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.
  ☆36Updated 3 years ago