Alternatives and similar repositories for macro-level-attack-trending:

Users that are interested in macro-level-attack-trending are comparing it to the libraries listed below

• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆42Updated 4 years ago
• west-wind / Threat-Hunting-With-Splunk
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆60Updated 10 months ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆36Updated last week
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆65Updated 11 months ago
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆35Updated last week
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆37Updated last year
• MITRECND / mitrecnd.github.io
  MITRE Shield website
  ☆19Updated 3 years ago
• edelucia / rules
  Cyber Threats Detection Rules
  ☆14Updated 2 months ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 2 years ago
• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated last year
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆53Updated 4 years ago
• mitre / training
  A CALDERA plugin
  ☆25Updated 7 months ago
• SigmaHQ / pySigma-backend-crowdstrike
  SigmaHQ pySigma CrowdStrike processing pipeline
  ☆23Updated 4 months ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆23Updated last year
• ReconInfoSec / velociraptor-to-timesketch
  ☆5Updated 4 months ago
• tropChaud / Categorized-Adversary-TTPs
  Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…
  ☆53Updated 2 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• bengoerz / PurpleTeamDocs
  ☆28Updated 4 years ago
• tropChaud / Cyber-Adversary-Heatmaps
  Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.
  ☆34Updated 2 years ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆31Updated 2 years ago
• mitre / emu
  This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense
  ☆30Updated this week
• socprime / the-prime-hunt
  A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
  ☆76Updated 9 months ago
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆83Updated last month
• P4T12ICK / Sigma-Rule-Repository
  Sigma Detection Rule Repository
  ☆87Updated 4 years ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆116Updated last year
• LogRhythm-Labs / Sigma
  Convert Sigma rules to LogRhythm searches
  ☆20Updated 3 years ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆98Updated 2 weeks ago
• NorthfieldCreative / splunk-crowdstrike-event-queries
  ☆13Updated 2 months ago
• blacklanternsecurity / sigma-rules
  A collection of Sigma rules organized by MITRE ATT&CK technique
  ☆17Updated 3 years ago