Alternatives and similar repositories for elastic-siem

Users that are interested in elastic-siem are comparing it to the libraries listed below

• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆114Updated 3 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆71Updated 4 years ago
• swiftbird07 / IRIS-SOAR
  🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …
  ☆13Updated last year
• StevenD33 / Lab-DFIR-SOC
  ☆69Updated 4 years ago
• lmakonem / ELK-SIEM-Ansible-Playbook
  Ansible Playbook to install the ELK Stack
  ☆44Updated 5 years ago
• bobby-tablez / Enable-All-The-Logs
  This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…
  ☆39Updated 10 months ago
• juaromu / wazuh-domain-stats-alienvault
  ☆18Updated 4 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 4 years ago
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆36Updated 4 years ago
• OpenSecureCo / Demos
  Repo Filled With Follow Along Guides
  ☆80Updated 3 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆40Updated 3 years ago
• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆73Updated 5 years ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆128Updated 3 years ago
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆49Updated last month
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Updated 5 years ago
• archanchoudhury / Threat-Hunting
  This Repository gives the best and possible strategies against hunting the ransomware
  ☆26Updated 3 years ago
• arsolutioner / fortigate-belsen-leak
  Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group
  ☆86Updated last year
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆79Updated last week
• josh-thurston / easyELK
  Installation script for ELK stack to make life easy.
  ☆69Updated 5 years ago
• McL0vinn / Windows-Forensic-Examination-and-Threat-Hunting
  Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…
  ☆14Updated 3 years ago
• juaromu / wazuh-misp
  ☆20Updated 3 years ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆45Updated 2 years ago
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆56Updated 4 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆145Updated last month
• corelight / threat-hunting-guide
  ☆58Updated 3 years ago
• Security-Onion-Solutions / securityonion-image
  ☆54Updated this week
• WeaverHeavy / CTIA
  Cyber Threat Intelligence Appliance
  ☆13Updated 3 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆50Updated 8 months ago
• cisagov / network-architecture-verification-and-validation
  The NAVV (Network Architecture Verification and Validation) tool creates a spreadsheet for network traffic analysis from PCAP data and Ze…
  ☆35Updated last year