Alternatives and similar repositories for examples

Users that are interested in examples are comparing it to the libraries listed below

• aws-samples / amazon-security-lake-ocsf-validation
  ☆33Updated 6 months ago
• prowler-cloud / py-ocsf-models
  OCSF (https://schema.ocsf.io/) models in Python using Pydantic.
  ☆23Updated 3 weeks ago
• ocsf / ocsf-docs
  OCSF Documentation
  ☆137Updated 2 months ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆412Updated last week
• brexhq / substation
  Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
  ☆378Updated 3 weeks ago
• panther-labs / panther_analysis_tool
  Command line tool for working with Panther rules and policies
  ☆41Updated this week
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆162Updated last week
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆42Updated last week
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 3 years ago
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆177Updated last week
• runreveal / sigmalite
  ☆47Updated 5 months ago
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆186Updated last year
• dwillowtree / diana
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆187Updated 11 months ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 6 months ago
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆209Updated 6 months ago
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆164Updated 5 months ago
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• JupiterOne / starbase
  Graph-based security analysis for everyone
  ☆349Updated last year
• SumoLogic / cloud-siem-content-catalog
  ☆26Updated last week
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆70Updated last year
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆114Updated 2 weeks ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆31Updated 10 months ago
• aws-solutions-library-samples / automated-forensic-orchestrator-for-amazon-ec2
  Automated Forensics Orchestrator for Amazon EC2 and EKS is a self-service AWS Guidance implementation that enterprise customers can deplo…
  ☆64Updated last month
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated 10 months ago
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆76Updated last year
• JupiterOne / secops-automation-examples
  Examples on how to maintain security/compliance as code and to automate SecOps using the JupiterOne platform.
  ☆54Updated last year
• CrowdStrike / Cloud-AWS
  A collection of projects supporting AWS Integration
  ☆155Updated this week
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆165Updated 2 months ago