Alternatives and similar repositories for scripts:

Users that are interested in scripts are comparing it to the libraries listed below

• juaromu / wazuh
  ☆19Updated 3 years ago
• juaromu / wazuh-opencti
  ☆34Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 4 months ago
• elysiumsecurityltd / IRM
  Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General
  ☆23Updated 3 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 3 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆40Updated last year
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆64Updated last year
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆33Updated 4 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆35Updated 2 years ago
• juaromu / wazuh-misp
  ☆17Updated 2 years ago
• StrangeBeeCorp / thehive-templates
  ☆26Updated last month
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆53Updated 5 years ago
• msraju / Incident-Response-Playbooks
  ☆42Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated last year
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆65Updated 3 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 2 months ago
• juaromu / wazuh-domain-stats-alienvault
  ☆16Updated 3 years ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆88Updated 3 weeks ago
• Mikoyan-Dee / CrowdStrike-Queries
  CrowdStrike Falcon Queries For Advanced Threat Detection
  ☆17Updated 2 months ago
• humio / security_monitoring
  ☆41Updated 2 years ago
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆51Updated 6 months ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆32Updated 2 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆66Updated 10 months ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆30Updated 2 weeks ago
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆88Updated 6 months ago
• pfpt-andrew / Rapid-Response-Reporting
  RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…
  ☆37Updated 3 years ago
• eCrimeLabs / MISP-PurgeEvents
  Cleanup of older MISP events can require some work until now
  ☆25Updated 2 years ago
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 5 years ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆29Updated 7 months ago