Alternatives and similar repositories for splunk_pstree_app:

Users that are interested in splunk_pstree_app are comparing it to the libraries listed below

• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆37Updated last year
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 2 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• olafhartong / Presentations
  My conference presentations
  ☆66Updated last year
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆42Updated 4 years ago
• CrowdStrike / xwf-yara-scanner
  ☆86Updated last year
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆76Updated 3 years ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆75Updated this week
• d3sre / IntelligentProcessLifecycle
  The Intelligent Process Lifecycle of Active Cyber Defenders
  ☆31Updated 2 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆53Updated 4 years ago
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆65Updated 11 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆54Updated 7 months ago
• Antonlovesdnb / SANSTHS2021
  Hunting Malicious Macros SANS Threathunting Summit 2021 Materials
  ☆40Updated 3 years ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆36Updated last week
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆77Updated 2 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• mvelazc0 / attack2jira
  attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
  ☆111Updated last year
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆52Updated 8 months ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆59Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆91Updated 2 years ago
• ReconInfoSec / velociraptor-to-timesketch
  ☆5Updated 4 months ago
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆60Updated 10 months ago
• secprentice / PowerShellWatchlist
  List of PowerShell commands and commandlets that should be in your Powershel watchlist
  ☆37Updated 3 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆97Updated 2 months ago
• ashwin-patil / threat-hunting-with-notebooks
  Repository with Sample threat hunting notebooks on Security Event Log Data Sources
  ☆61Updated 2 years ago
• darkquasar / AIMOD2
  Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…
  ☆86Updated last year
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆145Updated last year
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆53Updated last month
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 3 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆107Updated last year