demisto / demisto-py

Related projects ⓘ

Alternatives and complementary repositories for demisto-py

• demisto / COPS
  Collaborative Open Playbook Standard
  ☆150Updated last year
• demisto / demisto-sdk
  Demisto SDK - Create Demisto Content with ease and efficiency
  ☆72Updated this week
• demisto / tools
  A collection of demisto tools
  ☆16Updated 6 years ago
• nericksen / xsoar-cli
  The unofficial XSOAR CLI
  ☆14Updated last year
• phantomcyber / phantom-apps
  Phantom Apps Repo
  ☆82Updated 3 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated 6 months ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 3 weeks ago
• PaloAltoNetworks / minemeld-node-prototypes
  Prototypes for MineMeld nodes
  ☆39Updated 3 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 5 months ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• ThreatConnect-Inc / threatconnect-playbooks
  Community driven repository of Playbooks and Apps for ThreatConnect.
  ☆69Updated 3 months ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆12Updated 3 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆18Updated 9 months ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆54Updated 2 years ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆70Updated last year
• demisto / sane-reports
  Reports library that will keep you sane and not pulling your hair out
  ☆53Updated 5 months ago
• demisto / content-docs
  Demisto Content Developer Docs
  ☆41Updated this week
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆98Updated 3 years ago
• P4T12ICK / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆107Updated 4 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆139Updated last year
• PaloAltoNetworks / minemeld-core
  Engine of MineMeld
  ☆141Updated last year
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆147Updated 3 months ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆64Updated 3 years ago
• demisto / alfred
  A Slack bot to add security info to messages containing URLs, hashes and IPs
  ☆71Updated 2 months ago
• marcurdy / dfir-toolset
  Dump of organized knowledge on DFIR
  ☆132Updated 3 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• P4T12ICK / Sigma-Rule-Repository
  Sigma Detection Rule Repository
  ☆85Updated 4 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆106Updated 9 months ago