Alternatives and similar repositories for SANS-Posters:

Users that are interested in SANS-Posters are comparing it to the libraries listed below

• JPMinty / Detection_Engineering_Signatures
  YARA, SIGMA, SNORT Rules based on Malware Analysis
  ☆16Updated this week
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆77Updated 5 months ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆106Updated last year
• dfircheatsheet / dfircheatsheet.github.io
  ☆65Updated 2 years ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated last year
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆73Updated last year
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆54Updated 3 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆55Updated 3 years ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆118Updated last year
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆122Updated last year
• EZToolsManuals / EZToolsManuals
  A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub
  ☆70Updated last year
• joshlemon / DFIR-Reference-Frameworks
  Repository of public reference frameworks for the DFIR community.
  ☆116Updated last year
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆145Updated last month
• shr3ddersec / ThreatHunting
  Reference sheet for Threat Hunting Professional Course
  ☆25Updated 6 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 7 months ago
• utilsec / OSINT
  Includes quick start guides for Shodan for both IT and ICS/OT assets
  ☆125Updated last year
• 0xHasanM / LogonSessionAuditor
  This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…
  ☆32Updated 2 months ago
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆125Updated 2 years ago
• ThreatMon / ThreatMon-Daily-C2-Feeds
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆64Updated last year
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆40Updated last year
• BushidoUK / CTI-Lexicon
  Dictionary of CTI-related acronyms, terms, and jargon
  ☆142Updated last year
• strandjs / ClassLabs
  ☆58Updated 3 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 5 years ago
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆88Updated last year
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆45Updated this week
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆174Updated 2 years ago
• digitalsleuth / WIN-FOR
  Windows Forensics Environment Builder
  ☆133Updated 3 months ago
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆84Updated 2 months ago