Alternatives and similar repositories for documentation:

Users that are interested in documentation are comparing it to the libraries listed below

• SEKOIA-IO / automation-library
  Automate your SOC with SEKOIA.IO's Automation Library. Pull Requests are always welcome and highly appreciated!
  ☆15Updated this week
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆78Updated last week
• OpenCTI-Platform / datasets
  OpenCTI datasets
  ☆27Updated last year
• korniko98 / pivot-atlas
  ☆87Updated last month
• JHUAPL / Low-Regret-Methodology
  ☆27Updated 4 years ago
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆147Updated last month
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆71Updated this week
• youhgo / DOPP
  DFIR ORC PARSER PROJECT
  ☆25Updated last month
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆106Updated last year
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆167Updated this week
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆98Updated last year
• muchdogesec / txt2stix
  Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.
  ☆51Updated last week
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• SEKOIA-IO / Community
  Welcome to the SEKOIA.IO Community repository!
  ☆147Updated 3 weeks ago
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆88Updated 8 months ago
• SigmaHQ / pySigma-backend-elasticsearch
  pySigma Elasticsearch backend
  ☆50Updated this week
• EfstratiosLontzetidis / pythia
  Pythia is a versatile query format designed to facilitate the discovery of malicious infrastructure by seamlessly converting into the syn…
  ☆32Updated 8 months ago
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆122Updated 3 months ago
• mnrkbys / fjta
  FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (EXT4, XFS) journals (not systemd-journald), generates…
  ☆62Updated this week
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆77Updated 5 months ago
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆160Updated 2 weeks ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆119Updated last year
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆26Updated 3 weeks ago
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆47Updated last year
• Yamato-Security / hayabusa-sample-evtx
  Sample evtx files to use for testing hayabusa detection rules
  ☆52Updated 5 months ago
• OpenCTI-Platform / client-python
  OpenCTI Python Client
  ☆128Updated this week
• MISP / misp-playbooks
  MISP Playbooks
  ☆189Updated last month
• mitre / atomic
  A MITRE Caldera plugin
  ☆42Updated 4 months ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆44Updated 3 weeks ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated last year