Alternatives and similar repositories for detection-engineering:

Users that are interested in detection-engineering are comparing it to the libraries listed below

• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆244Updated this week
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆196Updated 10 months ago
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆77Updated 3 years ago
• activecm / threat-tools
  Tools for simulating threats
  ☆183Updated last year
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆73Updated last year
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆244Updated last month
• adanalvarez / AWS-malware-lab
  Creation of a laboratory for malware analysis in AWS
  ☆96Updated 2 years ago
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆85Updated last year
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆174Updated 2 years ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆68Updated last year
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆144Updated last month
• BankSecurity / Threat_Hunting
  Some Threat Hunting queries useful for blue teamers
  ☆125Updated 2 years ago
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆103Updated last month
• ancailliau / sans-indexes
  Indexes for SANS Courses and GIAC Certifications
  ☆247Updated 11 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆199Updated 2 months ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆82Updated 6 months ago
• secure-cake / rapid-endpoint-investigations
  Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
  ☆123Updated this week
• The-DFIR-Report / DFIR-Artifacts
  Repository for sharing examples of our artifacts data and for use in new analyst recruitment.
  ☆97Updated 2 weeks ago
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆81Updated 4 years ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆106Updated last year
• utilsec / QuickStart-Guides
  ☆45Updated last year
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆120Updated last year
• stephensemmelroth / ResumeTemplate
  ☆76Updated 3 years ago
• madirish / ossocdocs
  Open Source Security Operations Center Documentation
  ☆178Updated this week
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 7 months ago
• LetsDefend / incident-response-playbooks
  ☆175Updated last year
• AttackIQ / DetectIQ
  ☆102Updated this week
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆111Updated 5 months ago