Alternatives and similar repositories for collector-templates

Users that are interested in collector-templates are comparing it to the libraries listed below

• splunk / contentctl
  Splunk Content Control Tool
  ☆126Updated 2 weeks ago
• CrowdStrike / Cloud-Azure
  A collection of projects supporting Azure Integrations
  ☆31Updated last month
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆312Updated this week
• CrowdStrike / falcon-scripts
  Scripts to streamline the deployment and use of the CrowdStrike Falcon sensor
  ☆200Updated last week
• SecurityBagel / CMMC-Bagel
  compliance assessment and POA&M management for CMMC/NIST 800-171A
  ☆103Updated last year
• splunk / azure-functions-splunk
  Azure Functions for getting data in to Splunk
  ☆33Updated 3 months ago
• criblio / criblvision
  Splunk App for Cribl Stream and Edge Observability
  ☆26Updated 6 months ago
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆79Updated last month
• splunk / security_content_docs
  Contains research.splunk.com site code
  ☆11Updated last year
• keyboardcrunch / SentinelOne-Query-Navigator
  Web based S1 query navigator for one-click threat hunting
  ☆24Updated 5 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Updated 5 years ago
• CrowdStrike / falconpy
  The CrowdStrike Falcon SDK for Python
  ☆463Updated 3 weeks ago
• splunk / rba
  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…
  ☆63Updated 3 weeks ago
• CrowdStrike / psfalcon
  PowerShell for CrowdStrike's OAuth2 APIs
  ☆447Updated last week
• ManagedSentinel / AzureSentinelKQLScripts
  Various tools used to monitor and troubleshoot Azure Sentinel data
  ☆31Updated last year
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆89Updated 2 years ago
• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆389Updated last year
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆131Updated 5 years ago
• ashwin-patil / blue-teaming-with-kql
  Repository with Sample KQL Query examples for Threat Hunting
  ☆216Updated 3 years ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆55Updated 2 years ago
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆90Updated 5 years ago
• k-bailey / detection-engineering-maturity-matrix
  ☆99Updated 3 years ago
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆135Updated 4 years ago
• garybushey / ProgrammingMicrosoftSentinel
  Programming Microsoft Sentinel book
  ☆25Updated 2 years ago
• bk-cs / rtr
  Real-time Response scripts and schema
  ☆121Updated 3 months ago
• ep3p / Sentinel_KQL
  In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…
  ☆134Updated last month
• guilhemmarchand / trackme
  TrackMe - Data tracking system for Splunk admins
  ☆49Updated 2 years ago
• reprise99 / kql-for-dfir
  A guide to using Azure Data Explorer and KQL for DFIR
  ☆123Updated 3 years ago
• splunk / splunk-connect-for-syslog
  Splunk Connect for Syslog
  ☆172Updated last week
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆119Updated last week