Alternatives and similar repositories for awesome-endpoint-detection-and-response:

Users that are interested in awesome-endpoint-detection-and-response are comparing it to the libraries listed below

• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆105Updated last month
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated 2 years ago
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆91Updated 2 years ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆125Updated 2 years ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆84Updated 2 months ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆70Updated 3 months ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 10 months ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆105Updated 2 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆110Updated last year
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆85Updated 2 years ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆156Updated 2 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆50Updated this week
• fkie-cad / socbed
  A Self-Contained Open-Source Cyberattack Experimentation Testbed
  ☆40Updated this week
• silverfort-open-source / latma
  ☆79Updated last year
• abusech / ThreatFox
  Open IOC sharing platform
  ☆54Updated 3 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆156Updated last week
• viper-framework / viper2
  File analysis and management framework.
  ☆82Updated last year
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆110Updated 3 years ago
• EC-DIGIT-CSIRC / openai-cti-summarizer
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆52Updated 6 months ago
• pain0x0 / awesome-incident-response
  ☆21Updated 2 years ago
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆85Updated 7 months ago
• The-DFIR-Report / Yara-Rules
  ☆68Updated last week
• alt3kx / wafaray
  Enhance your malware detection with WAF + YARA (WAFARAY)
  ☆108Updated 2 years ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆107Updated 2 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆64Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆63Updated 10 months ago
• elastic / labs-releases
  Elastic Security Labs releases
  ☆58Updated 4 months ago
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆155Updated 2 months ago