Alternatives and similar repositories for examples

Users that are interested in examples are comparing it to the libraries listed below

• aws-samples / amazon-security-lake-ocsf-validation
  ☆33Updated 5 months ago
• prowler-cloud / py-ocsf-models
  OCSF (https://schema.ocsf.io/) models in Python using Pydantic.
  ☆23Updated last week
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆407Updated this week
• runreveal / sigmalite
  ☆45Updated 4 months ago
• ocsf / ocsf-docs
  OCSF Documentation
  ☆137Updated last month
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆161Updated this week
• opensearch-project / security-analytics
  Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…
  ☆86Updated this week
• aws-solutions-library-samples / automated-forensic-orchestrator-for-amazon-ec2
  Automated Forensics Orchestrator for Amazon EC2 and EKS is a self-service AWS Guidance implementation that enterprise customers can deplo…
  ☆64Updated 3 weeks ago
• brexhq / substation
  Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
  ☆377Updated this week
• dwillowtree / diana
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆187Updated 11 months ago
• karmine05 / DEF3ND
  🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…
  ☆43Updated last month
• chronicle / ingestion-scripts
  ☆34Updated last month
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 5 months ago
• cisagov / shareable-soar-workflows
  This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…
  ☆88Updated 4 years ago
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 3 years ago
• traut / stixview
  STIX2 graph visualisation library in JS
  ☆90Updated last month
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆76Updated last year
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆207Updated 5 months ago
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆175Updated this week
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆165Updated 5 months ago
• Ascend-Technologies / OpenCTI-HELM-CHART
  ☆15Updated last year
• panther-labs / panther_analysis_tool
  Command line tool for working with Panther rules and policies
  ☆40Updated this week
• ocsf / ocsf-validator
  OCSF Schema Validation
  ☆10Updated 7 months ago
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆184Updated last year
• opencybersecurityalliance / stix-extensions
  ☆11Updated 7 months ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆41Updated 9 months ago
• SumoLogic / cloud-siem-content-catalog
  ☆26Updated last week
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆108Updated last week
• Shuffle / openapi-apps
  Swagger/ OpenAPI specifications for security products and services
  ☆78Updated last month