Xboarder56 / QRCE-RulesLinks
These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.
☆55Updated 6 years ago
Alternatives and similar repositories for QRCE-Rules
Users that are interested in QRCE-Rules are comparing it to the libraries listed below
Sorting:
- Tools for simulating threats☆186Updated last year
- Repository resource for threat hunter☆158Updated 6 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆205Updated 5 years ago
- Repository of public reference frameworks for the DFIR community.☆116Updated last year
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆78Updated 3 years ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆117Updated 2 years ago
- Resources To Learn And Understand SIGMA Rules☆177Updated 2 years ago
- This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.☆39Updated 3 years ago
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- A repository of my own Sigma detection rules.☆160Updated 9 months ago
- MISP Playbooks☆203Updated last week
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆258Updated this week
- links collected from SOC Core Skills class☆85Updated 4 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Blue Team detection lab created with Terraform and Ansible in Azure.☆160Updated 7 months ago
- Cybersecurity Incident Response Plan☆91Updated 4 years ago
- Resources for SANS CTI Summit 2021 presentation☆103Updated last year
- ☆95Updated 2 years ago
- Some important DFIR Resources☆83Updated 2 years ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆134Updated last year
- SentinelOne STAR Rules☆62Updated 4 months ago
- An opensource sigma conversion tool built using pysigma☆130Updated last week
- MISP to Sentinel integration☆68Updated last week
- Rules generated from our investigations.☆195Updated last week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆318Updated last month
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆143Updated 2 weeks ago
- SIEM Cheat Sheet☆74Updated last year
- ☆45Updated 2 years ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆256Updated 3 months ago
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆186Updated 3 years ago