Alternatives and similar repositories for automation-library

Users that are interested in automation-library are comparing it to the libraries listed below

• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆150Updated 5 months ago
• korniko98 / pivot-atlas
  ☆97Updated 2 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆83Updated last month
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆177Updated 9 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆85Updated 5 months ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆131Updated last year
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated last year
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆72Updated last year
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆111Updated 11 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆110Updated last month
• AttackIQ / DetectIQ
  ☆116Updated 4 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆215Updated last week
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆96Updated this week
• BlackPerl-DFIR / IR-Cheatsheets
  This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team
  ☆20Updated last year
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆52Updated last year
• blackstork-io / fabric
  An open-source command-line tool for cybersecurity reporting automation and a configuration language for reusable templates. Reporting-as…
  ☆61Updated 3 months ago
• tsale / Sigma_rules
  Sigma rules to share with the community
  ☆122Updated 8 months ago
• ThreatMon / ThreatMon-Reports-IOC
  ☆52Updated 2 months ago
• mthcht / ThreatIntel-Reports
  Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports
  ☆138Updated this week
• Yamato-Security / suzaku
  Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.
  ☆151Updated last week
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆66Updated last year
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆299Updated last year
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆125Updated last year
• mgreen27 / mcp-velociraptor
  VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.
  ☆54Updated 2 months ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆56Updated 7 months ago
• Abjuri5t / SarlackLab
  ☆34Updated this week
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆162Updated last year
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆161Updated last month
• SkillAegis / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆32Updated this week
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year