chronicle / api-samples-python

Related projects: ⓘ

• chronicle / ingestion-scripts
  ☆26Updated last week
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆105Updated 7 months ago
• chronicle / cli
  A CLI tool for managing Chronicle user workflows
  ☆14Updated 4 months ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆76Updated 8 months ago
• SigmaHQ / cookiecutter-pySigma-backend
  pySigma Cookiecutter backend template
  ☆20Updated 9 months ago
• chronicle / cbn-tool
  Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.
  ☆27Updated last year
• Loginsoft-Research / detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆49Updated 2 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆49Updated 2 years ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆108Updated 3 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆54Updated 2 years ago
• chronicle / detection-rules
  Collection of YARA-L 2.0 sample rules for the Chronicle Detection API
  ☆297Updated this week
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆40Updated last week
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆122Updated 3 weeks ago
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆64Updated 6 months ago
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆139Updated 2 weeks ago
• Shuffle / openapi-apps
  Swagger/ OpenAPI specifications for security products and services
  ☆73Updated 2 weeks ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 3 years ago
• opencybersecurityalliance / kestrel-huntbook
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆29Updated 8 months ago
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆51Updated last year
• k-bailey / detection-engineering-maturity-matrix
  ☆83Updated 2 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆138Updated last year
• amalone341 / YARA-L-Work
  Collection of detection rules written in YARA-L.
  ☆19Updated 6 months ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆62Updated last year
• splunk / contentctl
  Splunk Content Control Tool
  ☆81Updated this week
• dfirence / mitre-assistant
  ☆101Updated this week
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆42Updated 3 months ago
• opencybersecurityalliance / documentation
  This repository contains Enablement Documentation (STIX Shifter), Workgroup documents and materials (Endpoint), Working documents and ou…
  ☆33Updated this week
• muchdogesec / txt2stix
  txt2stix is a Python script that is designed to identify and extract IoCs and TTPs from text files, identify the relationships between th…
  ☆21Updated 2 weeks ago
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆139Updated last year
• cisagov / shareable-soar-workflows
  This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…
  ☆73Updated 3 years ago