Alternatives and similar repositories for examples

Users that are interested in examples are comparing it to the libraries listed below

• aws-samples / amazon-security-lake-ocsf-validation
  ☆33Updated 7 months ago
• brexhq / substation
  Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
  ☆384Updated 2 months ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆419Updated this week
• ocsf / ocsf-docs
  OCSF Documentation
  ☆141Updated 2 weeks ago
• panther-labs / panther_analysis_tool
  Command line tool for working with Panther rules and policies
  ☆42Updated this week
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆178Updated last week
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆163Updated last week
• JupiterOne / starbase
  Graph-based security analysis for everyone
  ☆350Updated last year
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 7 months ago
• prowler-cloud / py-ocsf-models
  OCSF (https://schema.ocsf.io/) models in Python using Pydantic.
  ☆24Updated last week
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 3 years ago
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆42Updated last month
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆209Updated 7 months ago
• opensearch-project / security-analytics
  Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…
  ☆90Updated last week
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆163Updated 7 months ago
• elastic / dorothy
  ☆187Updated 2 weeks ago
• cisagov / shareable-soar-workflows
  This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…
  ☆88Updated 4 years ago
• aws-solutions-library-samples / automated-forensic-orchestrator-for-amazon-ec2
  Automated Forensics Orchestrator for Amazon EC2 and EKS is a self-service AWS Guidance implementation that enterprise customers can deplo…
  ☆65Updated 2 months ago
• oasis-open / cti-stix-validator
  OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices
  ☆57Updated 2 months ago
• usnistgov / oscal-cli
  A simple open source command line tool to support common operations over OSCAL content.
  ☆54Updated 2 months ago
• dwillowtree / diana
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆215Updated last year
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆55Updated 6 months ago
• 0x4D31 / detection-and-response-pipeline
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆284Updated last year
• runreveal / sigmalite
  ☆50Updated 3 weeks ago
• center-for-threat-informed-defense / mappings-explorer
  Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…
  ☆80Updated this week
• splunk / contentctl
  Splunk Content Control Tool
  ☆119Updated 2 weeks ago
• chronicle / ingestion-scripts
  ☆35Updated 4 months ago
• CrowdStrike / Cloud-AWS
  A collection of projects supporting AWS Integration
  ☆155Updated last month
• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆71Updated last year