demisto / demisto-py

Related projects ⓘ

Alternatives and complementary repositories for demisto-py

• demisto / COPS
  Collaborative Open Playbook Standard
  ☆150Updated last year
• demisto / demisto-sdk
  Demisto SDK - Create Demisto Content with ease and efficiency
  ☆72Updated this week
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆147Updated 2 months ago
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated 6 months ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 2 weeks ago
• demisto / tools
  A collection of demisto tools
  ☆16Updated 6 years ago
• nericksen / xsoar-cli
  The unofficial XSOAR CLI
  ☆14Updated last year
• demisto / content-docs
  Demisto Content Developer Docs
  ☆41Updated this week
• phantomcyber / phantom-apps
  Phantom Apps Repo
  ☆82Updated 3 years ago
• P4T12ICK / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆107Updated 4 years ago
• carbonblack / carbon-black-cloud-sdk-python
  VMware Carbon Black Cloud Python SDK
  ☆40Updated last month
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆18Updated 9 months ago
• Neo23x0 / evt2sigma
  Log Entry to Sigma Rule Converter
  ☆105Updated 2 years ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• MISP / MISP-STIX-Converter
  A utility repo to assist with converting between MISP and STIX formats
  ☆64Updated 3 years ago
• dstaulcu / TA-Sigma-Searches
  A Splunk app with saved reports derived from Sigma rules
  ☆72Updated 6 years ago
• marcurdy / dfir-toolset
  Dump of organized knowledge on DFIR
  ☆132Updated 3 years ago
• hire-vladimir / SA-cim_vladiator
  Data validator agains Splunk Common Information Model (CIM)
  ☆75Updated 7 months ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆139Updated last year
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆70Updated last year
• carbonblack / cbc-syslog
  Syslog Connector for the Carbon Black Cloud
  ☆28Updated last month
• PaloAltoNetworks / minemeld-node-prototypes
  Prototypes for MineMeld nodes
  ☆39Updated 3 years ago
• SecurityRiskAdvisors / TALR
  Threat Alert Logic Repository
  ☆89Updated 5 years ago
• MHaggis / sysmon-splunk-app
  Sysmon Splunk App
  ☆46Updated 6 years ago
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆91Updated this week
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆49Updated 2 weeks ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆98Updated 3 years ago
• apger / SA-RBA
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆45Updated 3 years ago
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆81Updated 2 years ago