TheIRGurus/Playbooks external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

TheIRGurus/Playbooks

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/TheIRGurus/Playbooks)

Close

TheIRGurus / PlaybooksView on GitHubMore

• External links
• Readme badge

Playbooks designed for IBM SOAR developed by The IR Gurus. These playbooks can be used to demonstrate how to design playbooks, perform automations, and expand your SOP library within your environment.

☆18May 1, 2024Updated 2 years ago

Alternatives and similar repositories for Playbooks

Users that are interested in Playbooks are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jjfallete / resilient

  View on GitHub
  Resilient Automation Functions and Scripts
  ☆15Jan 5, 2022Updated 4 years ago
• ibmresilient / resilient-python-api

  View on GitHub
  Python Library for the IBM SOAR REST API, a Python SDK for developing Apps for IBM SOAR and more...
  ☆42Nov 13, 2025Updated 5 months ago
• ibmresilient / resilient-community-apps

  View on GitHub
  Source code for IBM SOAR Apps that are available on our App Exchange
  ☆93Feb 20, 2026Updated 2 months ago
• ibmresilient / resilient-reference

  View on GitHub
  Developer documentation for Resilient APIs
  ☆25Updated this week
• DaRuudii / qradar-utils

  View on GitHub
  This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM
  ☆16Jan 30, 2026Updated 3 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• cudeso / misp2defender

  View on GitHub
  MISP to Microsoft Defender integration
  ☆17Feb 24, 2026Updated 2 months ago
• idnahacks / NetCeasePlusPlus

  View on GitHub
  Takes the original idea of NetCease and adds functionality
  ☆24Feb 6, 2022Updated 4 years ago
• ibmresilient / resilient-scripts

  View on GitHub
  Example scripts and rules for use in Resilient playbooks.
  ☆35Dec 15, 2023Updated 2 years ago
• zoldax / PulseQueryViewer

  View on GitHub
  PulseQueryViewer is a Python script for parsing QRadar PULSE Dashboard JSON exports, displaying the results in a color-coded console outp…
  ☆11Aug 27, 2025Updated 8 months ago
• aws-samples / deploy-conformance-pack-for-aws-startup-security-baseline

  View on GitHub
  ☆15Mar 28, 2025Updated last year
• Techryptic / Cyber-Defense-Competition-Scripts

  View on GitHub
  Scripts I have made for blue team
  ☆16Apr 1, 2018Updated 8 years ago
• ReaQta / destra-docs

  View on GitHub
  Documentation about ReaQta DeStra® Engine
  ☆11Feb 7, 2022Updated 4 years ago
• mirhatx / BestRecon

  View on GitHub
  BestRecon is a browser-based recon tool to gather information about your target and analyze their security on browser.
  ☆11Jan 1, 2021Updated 5 years ago
• polarspetroll / EscapeAPI

  View on GitHub
  An API for escaping different kind of queries
  ☆14Jun 30, 2021Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• FujiNetWIFI / tnfsd

  View on GitHub
  Trivial Network File System for 8 bit systems
  ☆13Jan 8, 2026Updated 3 months ago
• ticofookfook / Bugbounts-ferramentas-e-tutoriais

  View on GitHub
  ☆11Jan 23, 2025Updated last year
• jordansissel / procnanny

  View on GitHub
  Process Nanny. It's like daemontools or supervisord, but fun.
  ☆14Jun 30, 2011Updated 14 years ago
• ticofookfook / Mini_searche_nmap

  View on GitHub
  mini script para procurar oq precisa!
  ☆11Feb 2, 2023Updated 3 years ago
• leaded-solder / x68000-pro-picopsu

  View on GitHub
  Adapter to use PicoPSU power supplies in a Sharp X68000 PRO computer
  ☆15Apr 25, 2026Updated last week
• pthoor / KustoDetectiveAgencyHints

  View on GitHub
  Hints for the Kusto Detective Agency
  ☆16Dec 17, 2022Updated 3 years ago
• dwmetz / detonaRE

  View on GitHub
  Capture. Detonate. Collect
  ☆14Sep 20, 2024Updated last year
• sp4ir / incidentresponse

  View on GitHub
  ☆24Feb 22, 2023Updated 3 years ago
• chessredoffsec / south-america-cve-hall

  View on GitHub
  ☆16Apr 3, 2026Updated last month
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• rapid7 / insightvm-api-examples

  View on GitHub
  Created by Ivan Quintanilla via the GitHub Connector
  ☆21Feb 17, 2025Updated last year
• Jaza / flask-s3-save-example

  View on GitHub
  An example Flask app that uses s3-saver, url-for-s3, flask-thumbnails-s3, and flask-admin-s3-upload to store and retrieve files on Amazon…
  ☆10Aug 28, 2015Updated 10 years ago
• wildmountainfarms / wild-graphql-datasource

  View on GitHub
  Grafana data source to interpret GraphQL queries as timeseries data. Includes a GraphiQL query editor with autocomplete!
  ☆14Jul 20, 2025Updated 9 months ago
• vigo / dotfiles-universal

  View on GitHub
  My old BASH dot-files... Try new one!
  ☆13Aug 17, 2017Updated 8 years ago
• kofrasa / flask-activerecord

  View on GitHub
  ActiveRecord patch for Flask-SQLAlchemy models
  ☆15Apr 10, 2018Updated 8 years ago
• josh-morin / qradar

  View on GitHub
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆87May 8, 2025Updated 11 months ago
• OTRF / BHEU22-ADFS

  View on GitHub
  Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations
  ☆12Dec 9, 2022Updated 3 years ago
• HoraceAndTheSpider / UAEConfigMaker

  View on GitHub
  Amiga UAE Configuration Maker, primarily for UAE4ARM/Amiberry on the Raspberry Pi.
  ☆14Feb 12, 2018Updated 8 years ago
• mav8557 / virus

  View on GitHub
  Polymorphic ELF Virus
  ☆18Mar 19, 2022Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• PeterMosmans / devsecops-lab

  View on GitHub
  Demo files
  ☆20Jun 3, 2022Updated 3 years ago
• ricardojba / Even-More-Awesome-Mainframe-Hacking

  View on GitHub
  ☆15Oct 29, 2024Updated last year
• ACE-Responder / rpcfirewall-extended-telemetry

  View on GitHub
  ☆16May 3, 2024Updated 2 years ago
• HullaBrian / EventHorizon

  View on GitHub
  Tool that gathers a customizable set of ETW telemetry and generates user-defined detections
  ☆53Jan 28, 2026Updated 3 months ago
• brokensound77 / toruk

  View on GitHub
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Jul 16, 2019Updated 6 years ago
• Mariam118 / UYR

  View on GitHub
  Under Your Radar (UYR): Exfiltration using Steganography
  ☆18Mar 28, 2015Updated 11 years ago
• charotAmine / azureBlueprintsExtension

  View on GitHub
  ☆10Mar 3, 2023Updated 3 years ago