Alternatives and similar repositories for siemstress

Users that are interested in siemstress are comparing it to the libraries listed below

• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆47Updated 2 years ago
• TonyPhipps / Elasticstack
  FIles and guides related to using Elasticstack as a SIEM
  ☆12Updated 5 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆52Updated 2 years ago
• dirtyfilthy / siem-from-scratch
  SIEM-From-Scratch is a drop-in ELK based SIEM component for your Vagrant infosec lab
  ☆37Updated 4 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 3 years ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆26Updated 5 years ago
• sk4la / plast
  Modular command-line threat hunting tool & framework.
  ☆17Updated 4 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 7 months ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 7 years ago
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆53Updated 3 years ago
• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆27Updated 4 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 11 months ago
• capesstack / capes-docker
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆14Updated 3 years ago
• OTRF / openhunt
  ☆34Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• securitydistractions / elastimispstash
  ☆29Updated 4 years ago
• SMAPPER / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆17Updated 8 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated 2 years ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 3 years ago
• robvandenbrink / CVEScan
  List CVEs and details that apply to your infrastructure (pre-inventoried).
  ☆10Updated 4 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 5 years ago
• DearBytes / Opensource-Endpoint-Monitoring
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆34Updated 5 years ago
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆48Updated last year
• swimlane / trawl
  A utility to trawl phishing domains and attempt to identify phishing kits as well as other malicious activity
  ☆36Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• thomaspatzke / sigma-workshop
  Elasticsearch/Kibana environment and log data for Sigma workshop
  ☆26Updated 5 years ago
• notx11 / urlScan2Hive
  Triage automation for suspect URLs
  ☆13Updated 5 years ago