This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Response capabilities within their organizations.
☆92Mar 2, 2021Updated 5 years ago
Alternatives and similar repositories for shareable-soar-workflows
Users that are interested in shareable-soar-workflows are comparing it to the libraries listed below
Sorting:
- JSON schemas for validating CACAO Security Playbooks. Note: In December 2023, Cyentific AS offered and transferred the content of this re…☆19Dec 15, 2023Updated 2 years ago
- A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…☆23Dec 11, 2023Updated 2 years ago
- OASIS TC Open Repository: A GitHub public repository for development of a python library to transform between data-interchange formats (s…☆14Feb 10, 2022Updated 4 years ago
- OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao☆32Jan 16, 2024Updated 2 years ago
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Aug 24, 2022Updated 3 years ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆102Feb 9, 2026Updated 3 weeks ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Dec 27, 2017Updated 8 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Jun 15, 2021Updated 4 years ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆974Aug 26, 2024Updated last year
- ☆30Mar 3, 2021Updated 5 years ago
- Augmentation to Machine Readable CTI☆37Sep 9, 2025Updated 5 months ago
- A repository to share contributions related to TheHive Project☆22Sep 15, 2021Updated 4 years ago
- Rapid Response sample Foundry app☆17Updated this week
- OASIS OpenC2 TC: Repository for submitting and reviewing OpenC2 use cases relevant to the work of the OpenC2 Language Subcommittee (LSC)☆30Apr 20, 2022Updated 3 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆51Jun 10, 2025Updated 8 months ago
- CI/CD repository template to automate deployments of your production flows☆14Jul 1, 2024Updated last year
- Elastic Ingest Documentation☆14Feb 26, 2026Updated last week
- FIles and guides related to using Elasticstack as a SIEM☆12May 16, 2020Updated 5 years ago
- Node CLI tool to import a CSV into ClearPass via the RESTful API☆13Feb 11, 2026Updated 3 weeks ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- Specifications used in the MISP project including MISP core format☆53Jan 7, 2026Updated last month
- A tool that allows you to document and assess any security automation in your SOC☆49Oct 31, 2024Updated last year
- A collection of awesome framework, libraries, learning tutorials, videos, webcasts, technical resources and cool stuff about Security Orc…☆112Jan 6, 2023Updated 3 years ago
- DFF (Digital Forensics Framework)☆11Jan 6, 2021Updated 5 years ago
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆14Mar 27, 2024Updated last year
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Dec 24, 2023Updated 2 years ago
- A web application for generating, parsing and validating, manipulating, visualizing and executing CACAO v2.0 playbooks.☆39Aug 27, 2025Updated 6 months ago
- Swagger/ OpenAPI specifications for security products and services☆77Feb 9, 2026Updated 3 weeks ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Dec 8, 2016Updated 9 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Feb 1, 2021Updated 5 years ago
- Sechead is a powerful security tool developed in Python that allows users to audit the security headers of any website. With Sechead, use…☆13May 22, 2023Updated 2 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- Completed project for Build TypeScript apps with Microsoft Graph☆15Feb 23, 2026Updated last week
- Python module to use the MISP Taxonomies☆31Feb 19, 2026Updated 2 weeks ago
- OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators☆29Feb 11, 2026Updated 3 weeks ago
- 🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …☆72Apr 3, 2024Updated last year
- Open source documentation repository for Azure management-related services. All content in this repository is published to learn.microsof…☆16Updated this week
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 8 years ago
- A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB☆19Mar 15, 2024Updated last year