Alternatives and similar repositories for ael:

Users that are interested in ael are comparing it to the libraries listed below

• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆177Updated 2 years ago
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆207Updated 4 months ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆124Updated last month
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆151Updated 9 months ago
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆132Updated last year
• strozfriedberg / cobaltstrike-config-extractor
  Cobalt Strike Beacon configuration extractor and parser.
  ☆153Updated 3 years ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆153Updated last year
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆192Updated this week
• mdecrevoisier / SIGMA-detection-rules
  Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques
  ☆354Updated 2 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆113Updated 3 weeks ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆200Updated last week
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆109Updated 2 months ago
• tsale / Sigma_rules
  Sigma rules to share with the community
  ☆119Updated 2 months ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆112Updated last year
• jsecurity101 / TelemetrySource
  ☆236Updated 10 months ago
• pan-unit42 / tweets
  ☆130Updated last year
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆356Updated 3 years ago
• The-DFIR-Report / Yara-Rules
  ☆67Updated last month
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆137Updated 4 years ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆141Updated last month
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆139Updated this week
• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆199Updated 4 years ago
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆157Updated 6 months ago
• op7ic / EDR-Testing-Script
  Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-Cradle…
  ☆301Updated 3 years ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆126Updated 11 months ago
• fox-it / cobaltstrike-beacon-data
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆124Updated 3 years ago
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆121Updated 3 months ago
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆166Updated this week
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆201Updated 2 years ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆165Updated 2 years ago