Alternatives and similar repositories for avoiding-data-disasters

Users that are interested in avoiding-data-disasters are comparing it to the libraries listed below

• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆64Updated last year
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆82Updated last year
• jonathanristo / VMMM-self-assessment-tool
  A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).
  ☆46Updated 8 months ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆54Updated 2 years ago
• malwarejake-public / conference-presentations
  Conference presentations
  ☆60Updated 3 weeks ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆47Updated last year
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆56Updated this week
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆114Updated 11 months ago
• m4nbat / KustQueryLanguage_kql
  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting
  ☆66Updated last week
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆53Updated 2 years ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆108Updated 5 years ago
• rfackroyd / detection-engineering-starter-pack
  A starter pack of resources to help you get started in Detection Engineering.
  ☆174Updated 2 months ago
• PaloAltoNetworks / cortex-xql-queries
  Repository for Cortex XDR and Cortex XSIAM XQL queries and more!
  ☆36Updated last year
• anvilogic-forge / armory
  Anvilogic Forge
  ☆110Updated last month
• bluemountaincyber / building-detections-azure
  ☆13Updated last year
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆88Updated last year
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆59Updated 3 years ago
• msraju / Incident-Response-Playbooks
  ☆45Updated 3 years ago
• msdirtbag / MicrosoftPurpleTeamToolkit
  ☆44Updated last year
• Bert-JanP / SecScripts
  Security Scripts and Sources for daily usage.
  ☆67Updated last month
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆37Updated 2 years ago
• Resistor52 / DockerCrashCourse
  Docker Crash Course: How to containerize your favorite security tools
  ☆28Updated 2 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆49Updated last year
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆128Updated 5 years ago
• ml58158 / Demystifying-KQL
  Content Repo for Demystifying KQL Tutorial Series
  ☆71Updated last year
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆92Updated last year
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆163Updated 8 months ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆77Updated 2 years ago