Alternatives and similar repositories for SOCFortress-Threat-Intel

Users that are interested in SOCFortress-Threat-Intel are comparing it to the libraries listed below

• juaromu / wazuh-opencti
  ☆40Updated 2 years ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆88Updated last week
• dariommr / scripts
  Personal scripts
  ☆15Updated last year
• juaromu / wazuh-misp
  ☆20Updated 2 years ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆219Updated last month
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆136Updated last week
• MISP / misp-docker
  A production ready Dockered MISP
  ☆297Updated last week
• socfortress / wazuh-mcp-server
  Repo to hold wazuh manager mcp server
  ☆68Updated 2 months ago
• cisagov / playbook-ng
  Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…
  ☆152Updated last week
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆128Updated 2 years ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆141Updated 9 months ago
• NUKIB / misp
  Docker image for MISP
  ☆135Updated 2 weeks ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆100Updated 3 months ago
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆77Updated last week
• activecm / threat-tools
  Tools for simulating threats
  ☆198Updated 2 years ago
• msraju / Incident-Response-Playbooks
  ☆47Updated 3 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated last month
• tguard-soc-package / nusantara
  ☆218Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆159Updated 8 months ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆40Updated 2 years ago
• guardsight / gsvsoc_cybersecurity-incident-response-plan
  Cybersecurity Incident Response Plan
  ☆109Updated 5 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆40Updated 3 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆70Updated 4 years ago
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆239Updated last month
• quitehacker / MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOC
  The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…
  ☆31Updated last month
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆85Updated 5 years ago
• OpenAEV-Platform / docker
  OpenAEV Docker deployment helpers
  ☆26Updated last week
• InfoSecInnovations / What2Log
  ☆43Updated 3 years ago