Alternatives and similar repositories for xsoar-md

Users that are interested in xsoar-md are comparing it to the libraries listed below

• cbcommunity / cbapi-examples
  Repository for all cbapi example scripts
  ☆16Updated 6 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• capesstack / capes
  Cyber Analytics Platform and Examination System (CAPES) Project Page
  ☆60Updated 5 years ago
• vmware-archive / cb-reporting
  Report Generation from the Carbon Black REST API
  ☆15Updated 3 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 4 years ago
• jordisk / TheHive2Sigma
  Python script to automatically create sigma rules from The hive observables
  ☆25Updated 6 years ago
• olafhartong / TA-Sysmon-deploy
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆31Updated 4 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆68Updated 4 years ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆110Updated last week
• MHaggis / sysmon-splunk-app
  Sysmon Splunk App
  ☆47Updated 6 years ago
• ncsa / bro-doctor
  ☆23Updated 5 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 3 years ago
• corelight / zerologon
  Zeek package to detect Zerologon
  ☆11Updated 3 years ago
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated this week
• MISP / PyTaxonomies
  Python module to use the MISP Taxonomies
  ☆29Updated this week
• MalwareSoup / sysmon2neo4j
  ☆15Updated 7 years ago
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆28Updated last year
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Updated 7 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year
• parthdmaniar / coronavirus-covid-19-SARS-CoV-2-IoCs
  All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
  ☆65Updated 4 years ago
• randomuserid / Tylium
  Primary data pipelines for intrusion detection, security analytics and threat hunting
  ☆87Updated 3 years ago
• SplunkSec / .conf2015
  Splunk app to support presentation at .conf2015 on free security tools and Splunk
  ☆10Updated 9 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆53Updated 2 years ago