Alternatives and similar repositories for SOCFortress-Threat-Intel

Users that are interested in SOCFortress-Threat-Intel are comparing it to the libraries listed below

• juaromu / wazuh-opencti
  ☆40Updated 2 years ago
• socfortress / wazuh-mcp-server
  Repo to hold wazuh manager mcp server
  ☆71Updated 4 months ago
• quitehacker / MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOC
  The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…
  ☆34Updated 2 months ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆91Updated 2 weeks ago
• MISP / misp-docker
  A production ready Dockered MISP
  ☆309Updated this week
• MISP / misp-playbooks
  MISP Playbooks
  ☆222Updated 3 months ago
• weslambert / velociraptor-docker
  Docker image for Velocidex Velociraptor
  ☆142Updated 3 weeks ago
• tguard-soc-package / nusantara
  ☆219Updated last year
• socfortress / OSSIEM
  Open Source SIEM Stack
  ☆136Updated last month
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆132Updated last year
• cisagov / playbook-ng
  Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…
  ☆156Updated last month
• dariommr / scripts
  Personal scripts
  ☆15Updated last year
• kraven-security / python-threat-hunting-tools
  This repository contains various threat hunting tools written in Python and is documented in the series Python Threat Hunting Tools which…
  ☆18Updated 2 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆70Updated last year
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆40Updated 3 years ago
• weslambert / DinoSOARLab
  Security Onion + Automation + Response Lab including n8n and Velociraptor
  ☆112Updated 3 years ago
• msraju / Incident-Response-Playbooks
  ☆47Updated 3 years ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆162Updated 9 months ago
• juaromu / wazuh-misp
  ☆20Updated 3 years ago
• crow1011 / wazuh2thehive
  Wazuh integration TheHive
  ☆41Updated 2 years ago
• chocolatecoat / DFIR-Templates
  Incident Response documents and tooling
  ☆111Updated last month
• signorrayan / Splunk-Threat-Hunting
  This repository contains Splunk queries to hunt some anomalies
  ☆46Updated 3 years ago
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆276Updated 10 months ago
• activecm / threat-tools
  Tools for simulating threats
  ☆199Updated 2 years ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆100Updated last month
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆79Updated last month
• PacktPublishing / Practical-Threat-Detection-Engineering
  Practical Threat Detection Engineering, Published by Packt
  ☆83Updated 2 years ago
• CiscoCXSecurity / Detection-Engineering-Framework
  ☆96Updated 2 weeks ago
• juaromu / wazuh-nmap
  ☆22Updated 3 years ago
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆244Updated last month