ocsf/ocsf-schema external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ocsf/ocsf-schema

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ocsf/ocsf-schema)

Close

ocsf / ocsf-schemaView on GitHubMore

• External links
• Readme badge

OCSF Schema

☆836Jun 13, 2026Updated this week

Alternatives and similar repositories for ocsf-schema

Users that are interested in ocsf-schema are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ocsf / ocsf-docs

  View on GitHub
  OCSF Documentation
  ☆161May 30, 2026Updated 2 weeks ago
• ocsf / governance

  View on GitHub
  ☆32Nov 19, 2024Updated last year
• ocsf / examples

  View on GitHub
  This repo contains example of raw event examples and possible translations to the OCSF schema.
  ☆62Jul 31, 2025Updated 10 months ago
• matanolabs / matano

  View on GitHub
  Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
  ☆1,677Jan 8, 2025Updated last year
• panther-labs / panther-analysis

  View on GitHub
  Built-in Panther detection rules and policies
  ☆452Updated this week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• FoxIO-LLC / LogSlash

  View on GitHub
  A standard for reducing log volume without sacrificing analytical capability
  ☆216Feb 21, 2025Updated last year
• brexhq / substation

  View on GitHub
  Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
  ☆402Jan 20, 2026Updated 4 months ago
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆342May 24, 2026Updated 3 weeks ago
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,585Updated this week
• opencybersecurityalliance / kestrel-lang

  View on GitHub
  Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
  ☆327Sep 27, 2024Updated last year
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆295Feb 5, 2024Updated 2 years ago
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,298Jun 2, 2026Updated 2 weeks ago
• OTRF / OSSEM

  View on GitHub
  Open Source Security Events Metadata (OSSEM)
  ☆1,298Feb 27, 2023Updated 3 years ago
• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,340Jun 4, 2026Updated 2 weeks ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• k-bailey / detection-engineering-maturity-matrix

  View on GitHub
  ☆101Sep 16, 2022Updated 3 years ago
• infosecB / awesome-detection-engineering

  View on GitHub
  Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…
  ☆1,213Jun 3, 2026Updated 2 weeks ago
• splunk / attack_range

  View on GitHub
  A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…
  ☆2,506May 9, 2026Updated last month
• splunk / attack_data

  View on GitHub
  A repository of curated datasets from various attacks
  ☆776Jun 12, 2026Updated last week
• anvilogic-forge / armory

  View on GitHub
  Anvilogic Forge
  ☆119Mar 31, 2026Updated 2 months ago
• aws-samples / amazon-security-lake-ocsf-validation

  View on GitHub
  ☆36Feb 27, 2025Updated last year
• JupiterOne / starbase

  View on GitHub
  Graph-based security analysis for everyone
  ☆358Feb 19, 2026Updated 4 months ago
• splunk / security_content

  View on GitHub
  Splunk Security Content
  ☆1,643Jun 12, 2026Updated last week
• center-for-threat-informed-defense / security-stack-mappings

  View on GitHub
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆387Apr 3, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• microsoft / msticpy

  View on GitHub
  Microsoft Threat Intelligence Security Tools
  ☆1,974Jun 8, 2026Updated last week
• jshlbrd / detection-engineering-pocket-guide

  View on GitHub
  pocket guide for core detection engineering concepts
  ☆31May 8, 2023Updated 3 years ago
• center-for-threat-informed-defense / attack-flow

  View on GitHub
  Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…
  ☆744Jun 11, 2026Updated last week
• dwillowtree / diana

  View on GitHub
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆224Sep 4, 2024Updated last year
• elastic / detection-rules

  View on GitHub
  ☆2,613Jun 11, 2026Updated last week
• SigmaHQ / pySigma

  View on GitHub
  Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
  ☆566Updated this week
• TheHive-Project / TheHive

  View on GitHub
  TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
  ☆3,926Jul 25, 2025Updated 10 months ago
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,587Jan 12, 2026Updated 5 months ago
• TracecatHQ / tracecat

  View on GitHub
  Open-source security automation platform for teams and AI agents
  ☆3,674Jun 12, 2026Updated last week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• grapl-security / grapl

  View on GitHub
  Graph platform for Detection and Response
  ☆698Dec 26, 2022Updated 3 years ago
• chainguard-dev / osquery-defense-kit

  View on GitHub
  Production-ready detection & response queries for osquery
  ☆607Apr 22, 2026Updated last month
• guacsec / guac

  View on GitHub
  GUAC aggregates software security metadata into a high fidelity graph database.
  ☆1,506Updated this week
• dfir-iris / iris-web

  View on GitHub
  Collaborative Incident Response platform
  ☆1,507Jun 8, 2026Updated last week
• SecurityRiskAdvisors / VECTR

  View on GitHub
  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…
  ☆1,584May 29, 2026Updated 3 weeks ago
• OWASP / www-project-cyber-defense-matrix

  View on GitHub
  Documentation on the Cyber Defense Matrix
  ☆27Apr 19, 2023Updated 3 years ago
• ocsf / ocsf-validator

  View on GitHub
  OCSF Schema Validation
  ☆12May 4, 2026Updated last month