Alternatives and similar repositories for detection-engineering

Users that are interested in detection-engineering are comparing it to the libraries listed below

• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆254Updated 2 months ago
• abdulshareef / DFIR-Resources
  Some important DFIR Resources
  ☆83Updated 2 years ago
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆71Updated last year
• adanalvarez / AWS-malware-lab
  Creation of a laboratory for malware analysis in AWS
  ☆97Updated 2 years ago
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆254Updated last month
• activecm / threat-tools
  Tools for simulating threats
  ☆185Updated last year
• Ahmed-AL-Maghraby / SIEM-Cheat-Sheet
  SIEM Cheat Sheet
  ☆73Updated last year
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆196Updated 11 months ago
• SoulSec / resource-threat-hunting
  Repository resource for threat hunter
  ☆158Updated 6 years ago
• ancailliau / sans-indexes
  Indexes for SANS Courses and GIAC Certifications
  ☆248Updated last year
• tidalcyber / cyber-threat-profiling
  A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense
  ☆87Updated last year
• archanchoudhury / DFIR-Tools
  This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR
  ☆78Updated 3 years ago
• maddev-engenuity / AdversaryEmulation
  MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository
  ☆117Updated 2 years ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆144Updated 2 months ago
• iknowjason / AutomatedEmulation
  An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
  ☆190Updated 11 months ago
• LetsDefend / incident-response-playbooks
  ☆177Updated last year
• nasbench / SIGMA-Resources
  Resources To Learn And Understand SIGMA Rules
  ☆175Updated 2 years ago
• utilsec / QuickStart-Guides
  ☆46Updated last year
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆107Updated 3 weeks ago
• mildlytested / Wild-West---SOC-Core-Skills---Notes
  links collected from SOC Core Skills class
  ☆85Updated 4 years ago
• LetsDefend / Phishing-Email-Analysis
  Useful resources about phishing email analysis
  ☆85Updated 4 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆201Updated 3 months ago
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆83Updated 4 years ago
• strandjs / ClassLabs
  ☆59Updated 4 years ago
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆54Updated 7 months ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆122Updated last year
• ethack / tht
  Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
  ☆141Updated last month
• Xboarder56 / QRCE-Rules
  These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.
  ☆55Updated 5 years ago
• secure-cake / win-mal-investigations
  Windows Malware Investigation Scripts & Docs
  ☆83Updated 6 months ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆107Updated last year