Alternatives and similar repositories for avoiding-data-disasters

Users that are interested in avoiding-data-disasters are comparing it to the libraries listed below

• bluemountaincyber / building-detections-azure
  ☆13Updated last year
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆54Updated 2 years ago
• malwarejake-public / conference-presentations
  Conference presentations
  ☆59Updated this week
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆63Updated last year
• Resistor52 / DockerCrashCourse
  Docker Crash Course: How to containerize your favorite security tools
  ☆28Updated 2 years ago
• bluemountaincyber / building-detections-aws
  ☆15Updated 2 years ago
• jonathanristo / VMMM-self-assessment-tool
  A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).
  ☆45Updated 7 months ago
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆55Updated this week
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆81Updated last year
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• theaj42 / presentations
  ☆17Updated 3 years ago
• msraju / Incident-Response-Playbooks
  ☆45Updated 2 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆140Updated 2 years ago
• WillOram / AzureAD-incident-response
  Notes on responding to security breaches relating to Azure AD
  ☆117Updated 3 years ago
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆91Updated last year
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆114Updated 11 months ago
• m4nbat / KustQueryLanguage_kql
  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting
  ☆65Updated 6 months ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆76Updated 2 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆59Updated 3 years ago
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆37Updated 2 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆49Updated last year
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated last year
• CiscoCXSecurity / Detection-Engineering-Framework
  ☆94Updated 2 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• Insider-Threat / Insider-Threat
  Creating a resource to help build and manage an Insider Threat program.
  ☆99Updated 8 months ago
• rfackroyd / detection-engineering-starter-pack
  A starter pack of resources to help you get started in Detection Engineering.
  ☆174Updated 2 months ago
• PaloAltoNetworks / cortex-xql-queries
  Repository for Cortex XDR and Cortex XSIAM XQL queries and more!
  ☆36Updated last year
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆125Updated last year
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆88Updated last year