Alternatives and similar repositories for resilient

Users that are interested in resilient are comparing it to the libraries listed below

• ibmresilient / resilient-community-apps
  Source code for IBM SOAR Apps that are available on our App Exchange
  ☆92Updated last week
• IBM / IBM-QRadar-Universal-Cloud-REST-API
  These workflows are provided for sample usage, new submissions and updates from the community, and are NOT supported by IBM.
  ☆51Updated 4 months ago
• josh-morin / qradar
  Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
  ☆87Updated 8 months ago
• ibmresilient / resilient-python-api
  Python Library for the IBM SOAR REST API, a Python SDK for developing Apps for IBM SOAR and more...
  ☆42Updated 2 months ago
• NdS-Research-Facilities / QRadar-ruleset
  QRadar Export the rule set for printing
  ☆23Updated 8 years ago
• PaloAltoNetworks / ioc-parser
  Tool to extract indicators of compromise from security reports in PDF format
  ☆75Updated last year
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆73Updated 2 years ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆104Updated 4 years ago
• carbonblack / cb-yara-connector
  Analyze binaries collected in VMware Carbon Black EDR against Yara rules.
  ☆38Updated 3 years ago
• syloktools / MISP-QRADAR-REFERENCE-SET-BUILDER
  Pulls IOCs from MISP and adds the to reference sets in QRadar
  ☆34Updated 2 years ago
• MISP / misp-book
  User guide of MISP
  ☆282Updated last year
• aboutsecurity / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆117Updated 7 years ago
• jorritfolmer / TA-dmarc
  Add-on for ingesting DMARC aggregate reports into Splunk
  ☆15Updated 3 years ago
• apger / SA-RBA
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆44Updated 4 years ago
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated last year
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆55Updated 5 years ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆113Updated 2 weeks ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆252Updated 4 years ago
• egaus / MaliciousMacroBot
  ☆154Updated 7 years ago
• IBM / api-samples
  Samples code that uses QRadar API's
  ☆209Updated 5 years ago
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆145Updated last year
• MISP / MISP-Taxii-Server
  An OpenTAXII Configuration for MISP
  ☆87Updated 3 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• TheIRGurus / Playbooks
  Playbooks designed for IBM SOAR developed by The IR Gurus. These playbooks can be used to demonstrate how to design playbooks, perform au…
  ☆17Updated last year
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 4 years ago
• marcurdy / dfir-toolset
  Dump of organized knowledge on DFIR
  ☆135Updated 4 years ago
• cvandeplas / ELK-forensics
  ELK configuration files for Forensic Analysts and Incident Handlers (unmaintained)
  ☆179Updated 6 years ago
• fireeye / OpenIOC_1.1
  ☆135Updated 4 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆71Updated 8 years ago
• SparkITSolutions / phoenix
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆107Updated 5 years ago