Alternatives and similar repositories for awesome-endpoint-detection-and-response:

Users that are interested in awesome-endpoint-detection-and-response are comparing it to the libraries listed below

• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆148Updated 7 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆54Updated 2 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆94Updated this week
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆87Updated 2 years ago
• 0xbad53c / wazuh-detection-rules
  Our collection of Wazuh detection rules for our Offense Lab
  ☆12Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago
• SigmaHQ / pySigma-backend-elasticsearch
  pySigma Elasticsearch backend
  ☆49Updated this week
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆81Updated last month
• juaromu / wazuh
  ☆18Updated 3 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆111Updated last year
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆77Updated last year
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 9 months ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆124Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆60Updated 9 months ago
• korniko98 / pivot-atlas
  ☆86Updated 5 months ago
• Security-Onion-Solutions / securityonion-soc
  ☆49Updated this week
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
  ☆110Updated last month
• viper-framework / viper2
  File analysis and management framework.
  ☆79Updated last year
• typosquatter / ail-typo-website
  Website for ail-typo-squatting library
  ☆56Updated 8 months ago
• malpedia / signator-rules
  Collection of rules created using YARA-Signator over Malpedia
  ☆125Updated 2 months ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆183Updated this week
• mitre / atomic
  A MITRE Caldera plugin
  ☆40Updated 2 months ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆84Updated 2 years ago
• elastic / labs-releases
  Elastic Security Labs releases
  ☆57Updated 3 months ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆129Updated 5 months ago
• fkie-cad / socbed
  A Self-Contained Open-Source Cyberattack Experimentation Testbed
  ☆38Updated 3 weeks ago
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆139Updated this week
• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆87Updated last year