Alternatives and similar repositories for Playbooks

Users that are interested in Playbooks are comparing it to the libraries listed below

• PolarBearGod / CrowdStrike-RTR-Scripts
  ☆26Updated 3 years ago
• SentineLabs / S1QL-Queries
  ☆59Updated last year
• syloktools / MISP-QRADAR-REFERENCE-SET-BUILDER
  Pulls IOCs from MISP and adds the to reference sets in QRadar
  ☆34Updated 2 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆55Updated 5 years ago
• IBM / wincollect
  ☆58Updated last year
• trellix-enterprise / RTS-Queries
  Practical Orientation Of MVISION EDR Query Language
  ☆33Updated 2 years ago
• StrangeBeeCorp / thehive-templates
  ☆26Updated 2 months ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆91Updated 4 years ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆41Updated 3 weeks ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆121Updated 4 years ago
• ReconInfoSec / velociraptor-to-timesketch
  ☆7Updated 7 months ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆107Updated last year
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆53Updated last month
• ibmresilient / resilient-community-apps
  Source code for IBM SOAR Apps that are available on our App Exchange
  ☆92Updated last week
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆53Updated 2 years ago
• splunk / TA-misp_es
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆12Updated last year
• strozfriedberg / greppin-logs
  2021 SANS DFIR Summit: Greppin' Logs
  ☆20Updated 3 years ago
• christian-taillon / splunk-spl
  SPL cheatsheet for Splunk.
  ☆23Updated 2 years ago
• 00010111 / smbtimeline
  ☆34Updated 7 months ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆82Updated 3 weeks ago
• k-bailey / detection-engineering-maturity-matrix
  ☆95Updated 2 years ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆83Updated 4 years ago
• SigmaHQ / pySigma-backend-insightidr
  ☆14Updated 8 months ago
• TheHive-Project / TheHiveHooks
  This is a python tool aiming to make using TheHive webhooks easier.
  ☆28Updated 4 years ago
• Intellisec-Solutions / Sentinel2D3FEND
  This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…
  ☆71Updated 3 years ago
• megan201296 / gsuite-dfir
  ☆42Updated 4 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆26Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• msraju / Incident-Response-Playbooks
  ☆44Updated 2 years ago
• elysiumsecurityltd / IRM
  Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General
  ☆24Updated 3 years ago