Alternatives and similar repositories for MPSiem_addons

Users that are interested in MPSiem_addons are comparing it to the libraries listed below

• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆38Updated 2 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆35Updated last month
• GenRockeR / mpsiemlib
  MP SIEM SDK
  ☆27Updated 7 months ago
• bi-zone / triage
  A free data collection and YARA scanning tool for cybersecurity incident investigation, compromise assessment and threat hunting
  ☆17Updated 9 months ago
• Security-Experts-Community / open-xp-rules
  Открытый репозиторий с правилами на языке eXtraction and Processing (XP)
  ☆24Updated 3 months ago
• op7ic / BlueTeam.Lab
  Blue Team detection lab created with Terraform and Ansible in Azure.
  ☆162Updated 9 months ago
• 3CORESec / MAL-CL
  MAL-CL (Malicious Command-Line)
  ☆317Updated 2 years ago
• lawndoc / RanSim
  Ransomware simulation script written in PowerShell. Useful for testing your defenses and backups against real ransomware-like activity in…
  ☆228Updated 10 months ago
• StevenD33 / Lab-DFIR-SOC
  ☆68Updated 4 years ago
• pr0xylife / Qakbot
  ☆197Updated last year
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆119Updated 2 years ago
• mthcht / Purpleteam
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆189Updated 8 months ago
• WithSecureLabs / LinuxCatScale
  Incident Response collection and processing scripts with automated reporting scripts
  ☆308Updated last year
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆187Updated last week
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆197Updated 2 months ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆121Updated 2 weeks ago
• IppSec / PowerSiem
  ☆122Updated last year
• dwmetz / CyberPipe
  An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.
  ☆330Updated 3 months ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆196Updated last year
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆128Updated 3 years ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆157Updated 4 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆207Updated 2 months ago
• ethack / tht
  Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
  ☆144Updated this week
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆83Updated 9 months ago
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆107Updated 4 months ago
• tsale / Sigma_rules
  Sigma rules to share with the community
  ☆121Updated 7 months ago
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆102Updated 2 months ago
• Yamato-Security / EnableWindowsLogSettings
  Documentation and scripts to properly enable Windows event logs.
  ☆626Updated last year
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆123Updated 2 years ago
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆156Updated 6 months ago