Alternatives and similar repositories for security-docs:

Users that are interested in security-docs are comparing it to the libraries listed below

• elastic / elastic-package
  elastic-package - Command line tool for developing Elastic Integrations
  ☆56Updated this week
• elastic / endpoint-package
  Repo for developing the endpoint package
  ☆22Updated 2 weeks ago
• elastic / integrations
  ☆270Updated this week
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 2 years ago
• elastic / endpoint
  ☆33Updated 2 weeks ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 weeks ago
• elastic / observability-docs
  Elastic Observability Documentation
  ☆37Updated this week
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆146Updated last year
• Cargill / OpenSIEM-Logstash-Parsing
  SIEM Logstash parsing for more than hundred technologies
  ☆183Updated this week
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆144Updated last month
• splunk / contentctl
  Splunk Content Control Tool
  ☆98Updated this week
• elastic / package-spec
  EPR package specifications
  ☆19Updated last week
• phantomcyber / phantom-apps
  Phantom Apps Repo
  ☆82Updated 3 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆74Updated 3 months ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆55Updated 2 years ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆125Updated last month
• elastic / elastic-agent
  Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.
  ☆161Updated this week
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆29Updated 3 weeks ago
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆59Updated 3 weeks ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆44Updated this week
• elastic / security-action-examples
  This repository contains a few examples of actions that can be added to rules within Elastic Security.
  ☆22Updated 2 weeks ago
• elastic / elastic-integration-corpus-generator-tool
  Command line tool used for generating events corpus dynamically given a specific integration
  ☆23Updated 2 weeks ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆43Updated 4 months ago
• oasis-open / cti-taxii-client
  OASIS TC Open Repository: TAXII 2 Client Library Written in Python
  ☆113Updated 10 months ago
• elastic / package-registry
  Elastic Package Registry (EPR)
  ☆45Updated this week
• inodee / threathunting-spl
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆271Updated last year
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆206Updated 3 months ago
• wazuh / wazuh-splunk
  Wazuh - Splunk App
  ☆52Updated 5 months ago
• splunk / splunk-connect-for-syslog
  Splunk Connect for Syslog
  ☆160Updated this week
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆185Updated 3 years ago