jjfallete / resilient

Related projects: ⓘ

• ibmresilient / resilient-community-apps
  Source code for IBM SOAR Apps that are available on our App Exchange
  ☆88Updated 3 weeks ago
• TheIRGurus / Playbooks
  Playbooks designed for IBM SOAR developed by The IR Gurus. These playbooks can be used to demonstrate how to design playbooks, perform au…
  ☆12Updated 4 months ago
• IBM / IBM-QRadar-Universal-Cloud-REST-API
  These workflows are provided for sample usage, new submissions and updates from the community, and are NOT supported by IBM.
  ☆46Updated 2 weeks ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆75Updated last month
• ibmresilient / resilient-python-api
  Python Library for the IBM SOAR REST API, a Python SDK for developing Apps for IBM SOAR and more...
  ☆39Updated 2 months ago
• DaRuudii / qradar-utils
  This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM
  ☆16Updated 2 years ago
• syloktools / MISP-QRADAR-REFERENCE-SET-BUILDER
  Pulls IOCs from MISP and adds the to reference sets in QRadar
  ☆33Updated last year
• NdS-Research-Facilities / QRadar-ruleset
  QRadar Export the rule set for printing
  ☆21Updated 6 years ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆37Updated 2 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆72Updated 3 months ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 9 months ago
• P4T12ICK / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆105Updated 4 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆97Updated 3 years ago
• dfirence / mitre-assistant
  ☆101Updated this week
• ibmresilient / resilient-scripts
  Example scripts and rules for use in Resilient playbooks.
  ☆33Updated 9 months ago
• ds4n6 / ds4n6_lib
  Library of functions to apply Data Science in several forensics artifacts
  ☆37Updated last month
• sans-blue-team / freq.py
  Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…
  ☆123Updated last year
• ibmresilient / resilient-reference
  Developer documentation for Resilient APIs
  ☆24Updated 3 months ago
• HASecuritySolutions / Presentations
  ☆131Updated 5 months ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆51Updated 2 years ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆62Updated last year
• carbonblack / cb-response-splunk-app
  ☆13Updated this week
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆82Updated 3 years ago
• P4T12ICK / Sigma-Rule-Repository
  Sigma Detection Rule Repository
  ☆84Updated 4 years ago
• apger / SA-RBA
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆44Updated 2 years ago
• P1llus / ArcSight-Rest
  Python library for the ArcSight logger REST API
  ☆27Updated 2 years ago
• IBM / data-import
  ☆48Updated 8 years ago
• P4T12ICK / Sigma-Hunting-App
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆106Updated 4 years ago
• MISP / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆104Updated 8 months ago
• ds4n6 / ds4n6_scripts
  Library of python scripts to apply Data Science in several forensics artifacts
  ☆31Updated 4 years ago