danieleperera / SocAnalystArsenalLinks
Quick SOC L1 ticket structure
☆38Updated 6 years ago
Alternatives and similar repositories for SocAnalystArsenal
Users that are interested in SocAnalystArsenal are comparing it to the libraries listed below
Sorting:
- links collected from SOC Core Skills class☆85Updated 4 years ago
- Repository resource for threat hunter☆158Updated 6 years ago
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆55Updated 6 years ago
- Cybersecurity Incident Response Plan☆97Updated 4 years ago
- This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.☆39Updated 4 years ago
- Repository of public reference frameworks for the DFIR community.☆117Updated 2 years ago
- Random notes collected on the intertubes relating to DFIR☆34Updated 2 years ago
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆80Updated 3 years ago
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- A curated list of FOSS software appliances for building a SOC☆18Updated 4 years ago
- ☆66Updated 2 years ago
- Practical Threat Detection Engineering, Published by Packt☆76Updated 2 years ago
- Resources for SANS CTI Summit 2021 presentation☆103Updated last year
- Resources To Learn And Understand SIGMA Rules☆180Updated 2 years ago
- Tools for simulating threats☆192Updated last year
- Threat-Intelligence Feeds & Tools & Frameworks☆220Updated last year
- Indexes for SANS Courses and GIAC Certifications☆257Updated last year
- Repository for SPEED SIEM Use Case Framework☆55Updated 5 years ago
- ☆45Updated 2 years ago
- ☆21Updated 6 years ago
- Dictionary of CTI-related acronyms, terms, and jargon☆144Updated last year
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆187Updated 3 years ago
- Useful resources about phishing email analysis☆85Updated 6 months ago
- Creating a resource to help build and manage an Insider Threat program.☆71Updated 6 months ago
- Three datasets to practice Threat Hunting against.☆46Updated last year
- Reference sheet for Threat Hunting Professional Course☆25Updated 6 years ago
- A curated list of Awesome Threat Intelligence resources☆47Updated 7 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆209Updated 5 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆27Updated 5 years ago
- Blue Team detection lab created with Terraform and Ansible in Azure.☆162Updated 9 months ago