devops-ia / helm-opencti
Helm chart for Open Cyber Threat Intelligence Platform
☆17Updated this week
Alternatives and similar repositories for helm-opencti:
Users that are interested in helm-opencti are comparing it to the libraries listed below
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation��☆74Updated last week
- Open Threat-Informed Detection Engineering☆37Updated last month
- Comprehensive adversary emulation tool for security testing on Google Cloud Platform (GCP) environments.☆14Updated 8 months ago
- Repository that contains a set of purposefully erroneous Yara rules.☆49Updated last year
- An LLM and OCR based Indicator of Compromise Extraction Tool☆33Updated 2 months ago
- Repository of tools and resources for analyzing Docker containers☆62Updated last year
- pocket guide for core detection engineering concepts☆27Updated last year
- Mapping of open-source detection rules and atomic tests.☆125Updated last month
- Anvilogic Forge☆93Updated this week
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆91Updated last year
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆48Updated 3 months ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆121Updated 7 months ago
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 6 months ago
- ☆100Updated last month
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆75Updated 3 months ago
- HASH (HTTP Agnostic Software Honeypot)☆136Updated 9 months ago
- Rules shared by the community from 100 Days of YARA 2025☆29Updated 3 weeks ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆51Updated 2 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 3 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 5 months ago
- A home for detection content developed by the delivr.to team☆67Updated 2 weeks ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆67Updated 9 months ago
- BlueBox Malware analysis Box and Cyber threat intelligence.☆40Updated 2 years ago
- A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.☆18Updated last year
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆43Updated 3 years ago
- Baseline a Windows System against LOLBAS☆25Updated 9 months ago
- ☆84Updated last week
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆51Updated last month
- User Feedback Space of #MitreAssistant☆37Updated last year
- Sniffing out well-known threat groups☆28Updated 6 months ago