Playbooks designed for IBM SOAR developed by The IR Gurus. These playbooks can be used to demonstrate how to design playbooks, perform automations, and expand your SOP library within your environment.
☆18May 1, 2024Updated last year
Alternatives and similar repositories for Playbooks
Users that are interested in Playbooks are comparing it to the libraries listed below
Sorting:
- Resilient Automation Functions and Scripts☆15Jan 5, 2022Updated 4 years ago
- Python Library for the IBM SOAR REST API, a Python SDK for developing Apps for IBM SOAR and more...☆42Nov 13, 2025Updated 3 months ago
- Source code for IBM SOAR Apps that are available on our App Exchange☆94Feb 20, 2026Updated last week
- This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM☆16Jan 30, 2026Updated last month
- PulseQueryViewer is a Python script for parsing QRadar PULSE Dashboard JSON exports, displaying the results in a color-coded console outp…☆11Aug 27, 2025Updated 6 months ago
- Developer documentation for Resilient APIs☆25Jan 6, 2025Updated last year
- Example scripts and rules for use in Resilient playbooks.☆35Dec 15, 2023Updated 2 years ago
- Scripts I have made for blue team☆16Apr 1, 2018Updated 7 years ago
- ☆10Mar 3, 2023Updated 3 years ago
- MISP to Microsoft Defender integration☆17Feb 24, 2026Updated last week
- These workflows are provided for sample usage, new submissions and updates from the community, and are NOT supported by IBM.☆51Feb 4, 2026Updated last month
- ☆15Oct 29, 2024Updated last year
- An agent that performs user actions on a workstation☆12Jan 22, 2018Updated 8 years ago
- Plugin that serves the ATT&CK website alongside CALDERA.☆12Feb 24, 2020Updated 6 years ago
- ☆15Mar 28, 2025Updated 11 months ago
- BestRecon is a browser-based recon tool to gather information about your target and analyze their security on browser.☆11Jan 1, 2021Updated 5 years ago
- Trivial Network File System for 8 bit systems☆12Jan 8, 2026Updated last month
- An API for escaping different kind of queries☆14Jun 30, 2021Updated 4 years ago
- ☆13Sep 23, 2025Updated 5 months ago
- Process Nanny. It's like daemontools or supervisord, but fun.☆14Jun 30, 2011Updated 14 years ago
- Documentation about ReaQta DeStra® Engine☆11Feb 7, 2022Updated 4 years ago
- ☆15May 3, 2024Updated last year
- Blueprints repo, new samples, ARM Templates for Blueprints, exported/importable Blueprints☆10Jan 9, 2025Updated last year
- Under Your Radar (UYR): Exfiltration using Steganography☆18Mar 28, 2015Updated 10 years ago
- ActiveRecord patch for Flask-SQLAlchemy models☆15Apr 10, 2018Updated 7 years ago
- SIEM Detection Use Case Library mapped to MITRE ATT&CK tactics and techniques☆12Oct 28, 2018Updated 7 years ago
- ☆11Jan 23, 2025Updated last year
- A Python Flask website template based on MongoDB and Google's protocol buffers.☆12Jan 26, 2016Updated 10 years ago
- An example Flask app that uses s3-saver, url-for-s3, flask-thumbnails-s3, and flask-admin-s3-upload to store and retrieve files on Amazon…☆10Aug 28, 2015Updated 10 years ago
- ☆12Sep 1, 2020Updated 5 years ago
- Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations☆12Dec 9, 2022Updated 3 years ago
- Logbook for Digital Forensics and Incident Response☆11Jan 21, 2022Updated 4 years ago
- mini script para procurar oq precisa!☆11Feb 2, 2023Updated 3 years ago
- My old BASH dot-files... Try new one!☆13Aug 17, 2017Updated 8 years ago
- A desktop App to add STIX-2 objects to TAXII-2.0 servers☆11Mar 13, 2019Updated 6 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Jul 16, 2019Updated 6 years ago
- A Django tutorial jumping between error messages☆17Aug 31, 2014Updated 11 years ago
- Capture. Detonate. Collect☆14Sep 20, 2024Updated last year
- We want to create a dashboard (with knowledge graphs) to visualize the network node communication situation based on the firewall logs to…☆16Oct 26, 2024Updated last year