Alternatives and similar repositories for dsiem

Users that are interested in dsiem are comparing it to the libraries listed below

• Patrowl / PatrowlEngines
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆248Updated last month
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆525Updated 11 months ago
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆802Updated 2 years ago
• Patrowl / PatrowlManager
  PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
  ☆636Updated 3 weeks ago
• HASecuritySolutions / VulnWhisperer
  Create actionable data from your Vulnerability Scans
  ☆1,390Updated 2 years ago
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆282Updated last year
• TheHive-Project / TheHiveDocs
  Documentation of TheHive
  ☆398Updated last year
• Patrowl / PatrowlDocs
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆149Updated 3 years ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆470Updated 11 months ago
• atc-project / atomic-threat-coverage
  Actionable analytics designed to combat threats
  ☆997Updated 3 years ago
• TheHive-Project / CortexDocs
  Documentation of Cortex
  ☆174Updated last year
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆443Updated last year
• OTRF / ATTACK-Python-Client
  Python Script to access ATT&CK content available in STIX via a public TAXII server
  ☆566Updated 8 months ago
• TheHive-Project / Cortex-Analyzers
  Cortex Analyzers Repository
  ☆466Updated this week
• Elemental-attack / Elemental
  Elemental - An ATT&CK Threat Library
  ☆318Updated 2 years ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆879Updated last year
• correlatedsecurity / Awesome-SOAR
  A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
  ☆881Updated 11 months ago
• coolacid / docker-misp
  A (nearly) production ready Dockered MISP
  ☆232Updated last year
• G-Research / siembol
  An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced sec…
  ☆207Updated 4 months ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆462Updated last week
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆374Updated this week
• robcowart / synesis_lite_suricata
  Suricata IDS/IPS log analytics using the Elastic Stack.
  ☆239Updated 4 years ago
• TheHive-Project / TheHive4py
  Python API Client for TheHive
  ☆232Updated 2 weeks ago
• olafhartong / ThreatHunting
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,163Updated 2 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆487Updated last month
• swimlane / pyattck
  A Python package to interact with the Mitre ATT&CK Framework
  ☆477Updated last year
• alphasoc / flightsim
  A utility to safely generate malicious network traffic patterns and evaluate controls.
  ☆1,319Updated last year
• dogoncouch / LogESP
  Open Source SIEM (Security Information and Event Management system).
  ☆218Updated last year
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆167Updated 4 months ago
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆189Updated 4 years ago