Alternatives and similar repositories for pypanther-starter-kit

Users that are interested in pypanther-starter-kit are comparing it to the libraries listed below

• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆28Updated 2 years ago
• AppOmni-Labs / event-maturity-matrix
  The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…
  ☆21Updated this week
• runreveal / sigmalite
  ☆44Updated 3 months ago
• panther-labs / panther_analysis_tool
  Command line tool for working with Panther rules and policies
  ☆39Updated this week
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆29Updated last year
• anvilogic-forge / armory
  Anvilogic Forge
  ☆104Updated 3 weeks ago
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆67Updated last year
• blacklanternsecurity / sigma-rules
  A collection of Sigma rules organized by MITRE ATT&CK technique
  ☆17Updated 3 years ago
• okta / customer-detections
  ☆132Updated last month
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆46Updated 7 months ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆57Updated 3 years ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆97Updated last year
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 3 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆52Updated 2 years ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆29Updated last year
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆47Updated this week
• mitre / training
  A CALDERA plugin
  ☆26Updated 11 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆81Updated last month
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆44Updated last year
• panther-labs / tutorials
  Cloud security tutorials and best practices
  ☆38Updated 2 years ago
• korniko98 / pivot-atlas
  ☆92Updated last month
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆34Updated last year
• mitre / stockpile
  A CALDERA plugin
  ☆77Updated 3 weeks ago
• Cyb3rWard0g / IntelRAGU
  Intel Retrieval Augmented Generation (RAG) Utilities
  ☆90Updated last year
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆183Updated 10 months ago
• newcontext-oss / opencti-terraform
  Terraform scripts for deploying OpenCTI to AWS, Azure, and GCP
  ☆31Updated last year
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆163Updated 3 months ago
• LogRhythm-Labs / Sigma
  Convert Sigma rules to LogRhythm searches
  ☆21Updated 3 years ago