Alternatives and similar repositories for xsoar-md:

Users that are interested in xsoar-md are comparing it to the libraries listed below

• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated last month
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• P1llus / ArcSight-Rest
  Python library for the ArcSight logger REST API
  ☆27Updated 3 years ago
• jordisk / TheHive2Sigma
  Python script to automatically create sigma rules from The hive observables
  ☆23Updated 5 years ago
• rocknsm / rock-dashboards
  Dashboards and loader for ROCK NSM dashboards
  ☆48Updated last year
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆56Updated 3 years ago
• Shuffle / shuffle-docs
  Documentation used for Shuffle
  ☆19Updated this week
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆47Updated 6 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆28Updated 7 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• DCSO / MISP-dockerized
  ☆33Updated 4 years ago
• austin-taylor / bluewall
  Bluewall is a firewall framework designed for offensive and defensive cyber professionals.
  ☆106Updated 5 years ago
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆22Updated 7 years ago
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• parthdmaniar / coronavirus-covid-19-SARS-CoV-2-IoCs
  All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
  ☆65Updated 3 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 3 years ago
• cbcommunity / cbapi-examples
  Repository for all cbapi example scripts
  ☆16Updated 6 years ago
• randomuserid / Tylium
  Primary data pipelines for intrusion detection, security analytics and threat hunting
  ☆86Updated 3 years ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆55Updated 2 years ago
• thomaspatzke / EQUEL
  An Elasticsearch QUEry Language
  ☆56Updated 7 years ago
• P4T12ICK / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆108Updated 4 years ago
• OktaSecurityLabs / CheatSheets
  ☆33Updated 6 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• ajackal / ir_scripts
  incident response scripts
  ☆19Updated 5 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆55Updated 2 years ago