cisagov / playbook-ngLinks
Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and eviction.
☆151Updated last week
Alternatives and similar repositories for playbook-ng
Users that are interested in playbook-ng are comparing it to the libraries listed below
Sorting:
- An index of publicly available and open-source threat detection rulesets.☆128Updated 6 months ago
- Mapping of open-source detection rules and atomic tests.☆178Updated 9 months ago
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆125Updated last month
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆108Updated last year
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆111Updated last year
- LotL RMM☆249Updated 3 weeks ago
- ☆103Updated 3 months ago
- A preconfigured Velociraptor triage collector☆56Updated this week
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…☆92Updated 2 weeks ago
- Knowledge base on cybercriminal concealment techniques☆78Updated 5 months ago
- ☆116Updated 5 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆52Updated last year
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆82Updated last month
- Conference presentations☆59Updated last week
- A tool that allows you to document and assess any security automation in your SOC☆47Updated 11 months ago
- ☆97Updated 2 months ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆131Updated last year
- A starter pack of resources to help you get started in Detection Engineering.☆174Updated 2 months ago
- MISP to Sentinel integration☆74Updated 3 weeks ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆159Updated 6 months ago
- VirtualGHOST Detection Tool☆94Updated last year
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆152Updated this week
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆122Updated last month
- Security Scripts and Sources for daily usage.☆66Updated 3 weeks ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated 11 months ago
- A repository to share publicly available Velociraptor detection content☆189Updated this week
- ☆94Updated 2 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆183Updated 8 months ago
- Anvilogic Forge☆110Updated last month