Alternatives and similar repositories for DEF3ND

Users that are interested in DEF3ND are comparing it to the libraries listed below

• dandye / adk_runbooks
  ☆45Updated 3 weeks ago
• dwillowtree / diana
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆187Updated 11 months ago
• Ashfaaq98 / awesome-genai-cyberhub
  A curated list of LLM driven Cyber security Resources
  ☆34Updated 2 months ago
• rfackroyd / detection-engineering-starter-pack
  A starter pack of resources to help you get started in Detection Engineering.
  ☆170Updated last month
• gertjanbruggink / metrics
  This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.
  ☆113Updated 9 months ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆47Updated 3 months ago
• AttackIQ / DetectIQ
  ☆113Updated 3 months ago
• muchdogesec / txt2stix
  Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.
  ☆66Updated this week
• PacktPublishing / Automating-Security-Detection-Engineering
  Automating Security Detection Engineering, published by Packt
  ☆62Updated 10 months ago
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆164Updated 5 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆175Updated 7 months ago
• CiscoCXSecurity / Detection-Engineering-Framework
  ☆70Updated 2 weeks ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆106Updated 2 weeks ago
• korniko98 / pivot-atlas
  ☆94Updated 3 weeks ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆84Updated 3 months ago
• okta / customer-detections
  ☆144Updated 2 weeks ago
• k-bailey / detection-engineering-maturity-matrix
  ☆96Updated 2 years ago
• OTRF / GenAI-Security-Adventures
  ☆105Updated last year
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆76Updated last year
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆122Updated 4 months ago
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆52Updated last week
• center-for-threat-informed-defense / attack-sync
  ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…
  ☆20Updated 3 months ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆128Updated last year
• fr0gger / nova-framework
  NOVA: The Prompt Pattern Matching
  ☆161Updated last month
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆46Updated 9 months ago
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆156Updated 6 months ago
• fr0gger / jupyter-collection
  Collection of Jupyter Notebooks by @fr0gger_
  ☆175Updated 2 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆76Updated last week
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆77Updated last year
• st0pp3r / awesome-soc-analyst
  Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, po…
  ☆24Updated last month