OCSF Schema
☆805Apr 10, 2026Updated last week
Alternatives and similar repositories for ocsf-schema
Users that are interested in ocsf-schema are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- OCSF Documentation☆159Jan 29, 2026Updated 2 months ago
- ☆32Nov 19, 2024Updated last year
- This repo contains example of raw event examples and possible translations to the OCSF schema.☆60Jul 31, 2025Updated 8 months ago
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,670Jan 8, 2025Updated last year
- Built-in Panther detection rules and policies☆445Updated this week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A standard for reducing log volume without sacrificing analytical capability☆216Feb 21, 2025Updated last year
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆395Jan 20, 2026Updated 2 months ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆341Updated this week
- Main Sigma Rule Repository☆10,309Apr 1, 2026Updated 2 weeks ago
- Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.☆326Sep 27, 2024Updated last year
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆291Feb 5, 2024Updated 2 years ago
- Detect Tactics, Techniques & Combat Threats☆2,280Jan 21, 2026Updated 2 months ago
- Open Source Security Events Metadata (OSSEM)☆1,290Feb 27, 2023Updated 3 years ago
- Granular, Actionable Adversary Emulation for the Cloud☆2,295Updated this week
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆99Sep 16, 2022Updated 3 years ago
- Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…☆1,168Apr 1, 2026Updated 2 weeks ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,476Apr 7, 2026Updated last week
- A repository of curated datasets from various attacks☆760Updated this week
- Anvilogic Forge☆118Mar 31, 2026Updated 2 weeks ago
- ☆36Feb 27, 2025Updated last year
- Graph-based security analysis for everyone☆355Feb 19, 2026Updated 2 months ago
- Splunk Security Content☆1,609Updated this week
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆387Apr 3, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Microsoft Threat Intelligence Security Tools☆1,955Mar 25, 2026Updated 3 weeks ago
- pocket guide for core detection engineering concepts☆31May 8, 2023Updated 2 years ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆727Nov 14, 2025Updated 5 months ago
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆223Sep 4, 2024Updated last year
- ☆2,557Updated this week
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆545Updated this week
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,900Jul 25, 2025Updated 8 months ago
- Open-source security automation platform for teams and AI agents☆3,551Updated this week
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,534Jan 12, 2026Updated 3 months ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Graph platform for Detection and Response☆700Dec 26, 2022Updated 3 years ago
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,480Updated this week
- Production-ready detection & response queries for osquery☆603Apr 8, 2026Updated last week
- Collaborative Incident Response platform☆1,465Apr 8, 2026Updated last week
- VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…☆1,564Apr 3, 2026Updated 2 weeks ago
- Documentation on the Cyber Defense Matrix☆25Apr 19, 2023Updated 3 years ago
- OCSF Schema Validation☆12Dec 13, 2024Updated last year