OCSF Schema
☆801Mar 18, 2026Updated last week
Alternatives and similar repositories for ocsf-schema
Users that are interested in ocsf-schema are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OCSF Documentation☆158Jan 29, 2026Updated last month
- OCSF Schema WEB Server☆58Mar 16, 2026Updated last week
- This repo contains example of raw event examples and possible translations to the OCSF schema.☆59Jul 31, 2025Updated 7 months ago
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,662Jan 8, 2025Updated last year
- Built-in Panther detection rules and policies☆441Updated this week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A standard for reducing log volume without sacrificing analytical capability☆214Feb 21, 2025Updated last year
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆393Jan 20, 2026Updated 2 months ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆339Mar 17, 2026Updated last week
- Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.☆325Sep 27, 2024Updated last year
- Main Sigma Rule Repository☆10,224Mar 19, 2026Updated last week
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆291Feb 5, 2024Updated 2 years ago
- Detect Tactics, Techniques & Combat Threats☆2,269Jan 21, 2026Updated 2 months ago
- Open Source Security Events Metadata (OSSEM)☆1,289Feb 27, 2023Updated 3 years ago
- Granular, Actionable Adversary Emulation for the Cloud☆2,283Mar 12, 2026Updated 2 weeks ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…☆1,155Dec 19, 2025Updated 3 months ago
- ☆99Sep 16, 2022Updated 3 years ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,460Updated this week
- A repository of curated datasets from various attacks☆748Updated this week
- Anvilogic Forge☆116Sep 18, 2025Updated 6 months ago
- ☆36Feb 27, 2025Updated last year
- Graph-based security analysis for everyone☆356Feb 19, 2026Updated last month
- Splunk Security Content☆1,589Mar 18, 2026Updated last week
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆387Apr 3, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Microsoft Threat Intelligence Security Tools☆1,955Mar 6, 2026Updated 2 weeks ago
- pocket guide for core detection engineering concepts☆31May 8, 2023Updated 2 years ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆722Nov 14, 2025Updated 4 months ago
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆223Sep 4, 2024Updated last year
- ☆2,531Updated this week
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,896Jul 25, 2025Updated 8 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,508Jan 12, 2026Updated 2 months ago
- The AI automation platform built for security teams and agents.☆3,530Mar 20, 2026Updated last week
- Graph platform for Detection and Response☆700Dec 26, 2022Updated 3 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,462Updated this week
- Production-ready detection & response queries for osquery☆602Aug 13, 2025Updated 7 months ago
- Collaborative Incident Response platform☆1,446Feb 16, 2026Updated last month
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆536Updated this week
- Documentation on the Cyber Defense Matrix☆25Apr 19, 2023Updated 2 years ago
- OCSF Schema Validation☆12Dec 13, 2024Updated last year
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆266Nov 21, 2025Updated 4 months ago