ibmresilient / resilient-community-apps
Source code for IBM SOAR Apps that are available on our App Exchange
☆88Updated 3 weeks ago
Related projects: ⓘ
- These workflows are provided for sample usage, new submissions and updates from the community, and are NOT supported by IBM.☆46Updated 2 weeks ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆75Updated last month
- Python Library for the IBM SOAR REST API, a Python SDK for developing Apps for IBM SOAR and more...☆39Updated 2 months ago
- ☆131Updated 5 months ago
- Example scripts and rules for use in Resilient playbooks.☆33Updated 9 months ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆104Updated 8 months ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆33Updated last year
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆106Updated 4 years ago
- Playbooks designed for IBM SOAR developed by The IR Gurus. These playbooks can be used to demonstrate how to design playbooks, perform au…☆12Updated 4 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆139Updated last year
- Resilient Automation Functions and Scripts☆15Updated 2 years ago
- Developer documentation for Resilient APIs☆24Updated 3 months ago
- ☆118Updated 2 years ago
- OASIS TC Open Repository: TAXII 2 Server Library Written in Python☆119Updated 5 months ago
- Splunk code (SPL) for serious threat hunters and detection engineers.☆263Updated 8 months ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆123Updated last year
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆37Updated 2 years ago
- ☆101Updated this week
- Home for Splunk security datasets.☆117Updated 4 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆47Updated 2 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆105Updated 4 years ago
- A Splunk app to use MISP in background☆109Updated 9 months ago
- Sigma Detection Rule Repository☆84Updated 4 years ago
- This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…☆73Updated 3 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆184Updated 3 years ago
- This is a repository for freq.py and freq_server.py☆198Updated 4 years ago
- A (nearly) production ready Dockered MISP☆226Updated 8 months ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- A community event for security researchers to share their favorite notebooks☆105Updated 7 months ago
- OSSEM Detection Model☆166Updated last year