Collaborative Open Playbook Standard
☆159Dec 29, 2025Updated 2 months ago
Alternatives and similar repositories for COPS
Users that are interested in COPS are comparing it to the libraries listed below
Sorting:
- Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull …☆1,253Updated this week
- A collection of demisto tools☆20Dec 29, 2025Updated 2 months ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Dec 27, 2017Updated 8 years ago
- A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, t…☆12Nov 23, 2022Updated 3 years ago
- Demisto Client for Python☆72Jan 12, 2026Updated last month
- Reports library that will keep you sane and not pulling your hair out☆54Jun 16, 2024Updated last year
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Aug 28, 2024Updated last year
- Integration with Slack API☆15Dec 10, 2023Updated 2 years ago
- Pragmatic Network Security for Cloud and Hybrid Networks☆10Nov 24, 2015Updated 10 years ago
- OpenDXL Console is a high-level web-based console for interacting with a DXL fabric☆11Mar 29, 2021Updated 4 years ago
- ☆18Jan 4, 2026Updated last month
- Documentation of TheHive☆400Sep 20, 2023Updated 2 years ago
- Multithreaded threat Intelligence gathering built with Python3☆178Jan 23, 2018Updated 8 years ago
- Phantom Community Playbooks☆530Jan 22, 2026Updated last month
- Searches For Threat Hunting and Security Analytics☆238Mar 26, 2025Updated 11 months ago
- DLL hijacking vulnerability scanner and PE infector tool☆20Sep 8, 2017Updated 8 years ago
- A knowledge base of actionable Incident Response techniques☆662May 31, 2022Updated 3 years ago
- Community driven repository of Playbooks and Apps for ThreatConnect.☆74Nov 5, 2025Updated 3 months ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Oct 23, 2020Updated 5 years ago
- InvestigationPlaybookSpec☆71Sep 26, 2017Updated 8 years ago
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,890Jul 25, 2025Updated 7 months ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- 📖 A repo of configuration examples for StackHawk's Hawkscan!☆18Jan 28, 2026Updated last month
- A curated list of awesome things related to TheHive & Cortex☆185Oct 9, 2021Updated 4 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Mar 7, 2017Updated 8 years ago
- Incident Response Methodologies☆1,018Aug 2, 2018Updated 7 years ago
- Boilerplate Incident Response Plan from "Starting Up Security"☆165Nov 2, 2020Updated 5 years ago
- Python script to automatically create sigma rules from The hive observables☆25Mar 17, 2019Updated 6 years ago
- OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao☆31Jan 16, 2024Updated 2 years ago
- Automated process to build and distribute Posture & Exposure Reports' bi-weekly to customers.☆16Jul 16, 2025Updated 7 months ago
- Actionable analytics designed to combat threats☆1,005May 25, 2022Updated 3 years ago
- ☆168Jan 20, 2021Updated 5 years ago
- A collection of sources of indicators of compromise.☆953May 8, 2025Updated 9 months ago
- Digital Forensics artifact repository☆1,208Feb 11, 2026Updated 2 weeks ago
- A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, t…☆1,229Dec 12, 2022Updated 3 years ago
- Indices for courses in SANS' Network Security Operations curriculum☆17Feb 5, 2016Updated 10 years ago
- A framework for developing alerting and detection strategies for incident response.☆841Sep 8, 2025Updated 5 months ago
- Invoke-LiveResponse☆150Feb 22, 2022Updated 4 years ago
- Vocabulary for Event Recording and Incident Sharing (VERIS)☆630Feb 12, 2026Updated 2 weeks ago