cisagov / playbook-ngLinks
Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and eviction.
☆149Updated last week
Alternatives and similar repositories for playbook-ng
Users that are interested in playbook-ng are comparing it to the libraries listed below
Sorting:
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆72Updated 2 weeks ago
- Mapping of open-source detection rules and atomic tests.☆177Updated 8 months ago
- An index of publicly available and open-source threat detection rulesets.☆125Updated 5 months ago
- Knowledge base on cybercriminal concealment techniques☆78Updated 5 months ago
- LotL RMM☆247Updated last week
- A tool that allows you to document and assess any security automation in your SOC☆47Updated 11 months ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆110Updated 11 months ago
- A preconfigured Velociraptor triage collector☆55Updated this week
- ☆102Updated 3 months ago
- Generate a matrix based on an inventory of InfoSec tools☆23Updated last year
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆81Updated 3 weeks ago
- ☆116Updated 4 months ago
- ☆96Updated 2 months ago
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆151Updated this week
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆52Updated 11 months ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆157Updated 6 months ago
- A starter pack of resources to help you get started in Detection Engineering.☆172Updated last month
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆197Updated last year
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆131Updated last year
- MISP Playbooks☆211Updated 3 months ago
- A repository to share publicly available Velociraptor detection content☆186Updated this week
- VirtualGHOST Detection Tool☆92Updated last year
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆108Updated 11 months ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆118Updated last month
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated 10 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆96Updated last month
- ☆72Updated last month
- Elastic version of SOC prime watcher rules☆30Updated 11 months ago
- God Mode Detection Rules☆134Updated last year