Alternatives and similar repositories for sans-indexes

Users that are interested in sans-indexes are comparing it to the libraries listed below

• academic-templates / tex-course-index-template

  View on GitHub
  A template for writing a condensed course index leveraging LaTeX indexing
  ☆115Jan 27, 2026Updated 3 weeks ago
• 0sm0s1z / Voltaire

  View on GitHub
  Web application to create indexes for GIAC certification examinations.
  ☆150Apr 12, 2023Updated 2 years ago
• capesstack / capes-docker

  View on GitHub
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Feb 1, 2022Updated 4 years ago
• Ge0rg3 / sans-index-creator

  View on GitHub
  Tools to automatically create a SANS index based off the course pdf files.
  ☆122Aug 11, 2020Updated 5 years ago
• chvasu / SANS_SEC504_GCIH_Exam_Notes

  View on GitHub
  ☆11Oct 11, 2020Updated 5 years ago
• kanecain1981 / SANS_Index_Helper_Tool

  View on GitHub
  Python command line tool used for generating GIAC Certification indexes.
  ☆29Jul 17, 2023Updated 2 years ago
• tesorion / TCERT-Cumulonimbus-UAL_Extractor

  View on GitHub
  Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…
  ☆21Oct 25, 2023Updated 2 years ago
• PwC-IR / Business-Email-Compromise-Guide

  View on GitHub
  The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…
  ☆278Feb 2, 2021Updated 5 years ago
• daveherrald / SA_plaso-app-for-splunk

  View on GitHub
  ☆16Apr 16, 2017Updated 8 years ago
• sans-blue-team / sec555-wiki

  View on GitHub
  ☆77Jun 25, 2019Updated 6 years ago
• strozfriedberg / QELP

  View on GitHub
  Quick ESXi Log Parser
  ☆29Oct 20, 2025Updated 3 months ago
• dlcowen / sansfor509

  View on GitHub
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆219Oct 26, 2025Updated 3 months ago
• Robicus / gse-study

  View on GitHub
  The gse-study repo was assembled to serve as a consolidated, and comprehensive, study solution for the SANS GSE exam.
  ☆25Nov 11, 2018Updated 7 years ago
• austinsonger / Incident-Playbook

  View on GitHub
  GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]
  ☆1,538Jul 28, 2024Updated last year
• cyb3rfox / Aurora-Incident-Response

  View on GitHub
  Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
  ☆960Oct 5, 2023Updated 2 years ago
• teamdfir / concordance

  View on GitHub
  Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
  ☆69Aug 7, 2020Updated 5 years ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,507Jan 24, 2023Updated 3 years ago
• s0lari / Decoy-sploit

  View on GitHub
  Bunch of honey related items that spoof/decoy powersploit functions.
  ☆18Apr 23, 2020Updated 5 years ago
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆780Updated this week
• tsale / Threat-Intelligence-Playbooks

  View on GitHub
  High-level Threat Intelligence playbooks
  ☆20Mar 6, 2021Updated 4 years ago
• sans-blue-team / sec555-mdwiki-v1

  View on GitHub
  ☆11Jan 5, 2021Updated 5 years ago
• philhagen / sof-elk

  View on GitHub
  Configuration files for the SOF-ELK VM
  ☆1,715Jan 21, 2026Updated 3 weeks ago
• splunk / attack-detections-collector

  View on GitHub
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆69Mar 17, 2024Updated last year
• sans-blue-team / DeepBlueCLI

  View on GitHub
  ☆2,383Oct 14, 2023Updated 2 years ago
• mandiant / thiri-notebook

  View on GitHub
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Apr 25, 2022Updated 3 years ago
• EricZimmerman / KapeFiles

  View on GitHub
  This repository serves as a place for community created Targets and Modules for use with KAPE.
  ☆817Feb 9, 2026Updated last week
• libyal / libvshadow

  View on GitHub
  Library and tools to access the Volume Shadow Snapshot (VSS) format
  ☆113Dec 20, 2025Updated last month
• vavarachen / volatility_automation

  View on GitHub
  A tool to automate memory dump processing using Volatility, including optional Splunk integration.
  ☆12Jul 29, 2020Updated 5 years ago
• matthieugras / timeline-downloader

  View on GitHub
  ☆72Feb 4, 2026Updated last week
• davehull / Kansa

  View on GitHub
  A Powershell incident response framework
  ☆1,639Nov 22, 2022Updated 3 years ago
• Infocyte / PSHunt

  View on GitHub
  Powershell Threat Hunting Module
  ☆289Sep 21, 2016Updated 9 years ago
• ANSSI-FR / DFIR4vSphere

  View on GitHub
  Powershell module for VMWare vSphere forensics
  ☆158Nov 8, 2024Updated last year
• mformal / FOR508_Index

  View on GitHub
  FOR508 Index - GCFA
  ☆24May 19, 2018Updated 7 years ago
• Intellisec-Solutions / Sentinel2D3FEND

  View on GitHub
  This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…
  ☆74Jun 28, 2021Updated 4 years ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,262Jan 21, 2026Updated 3 weeks ago
• THORCollective / HEARTH

  View on GitHub
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆301Updated this week
• dfir-iris / iris-web

  View on GitHub
  Collaborative Incident Response platform
  ☆1,384Jan 27, 2026Updated 3 weeks ago
• Velocidex / velociraptor

  View on GitHub
  Digging Deeper....
  ☆3,763Updated this week
• activecm / BeaKer

  View on GitHub
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆298Feb 9, 2026Updated last week