st0pp3r / awesome-soc-analystLinks
Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, podcasts, Twitter/X accounts and a set of tools relevant to the role of SOC analyst.
☆26Updated 4 months ago
Alternatives and similar repositories for awesome-soc-analyst
Users that are interested in awesome-soc-analyst are comparing it to the libraries listed below
Sorting:
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆270Updated 7 months ago
- Advanced Threat Hunting: Ransomware Group☆29Updated 4 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated 11 months ago
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆83Updated 3 years ago
- A starter pack of resources to help you get started in Detection Engineering.☆174Updated 2 months ago
- Some important DFIR Resources☆83Updated 2 years ago
- Practical Threat Detection Engineering, Published by Packt☆78Updated 2 years ago
- ☆47Updated 3 years ago
- A repository of my own Sigma detection rules.☆162Updated last year
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆125Updated last year
- ☆28Updated last month
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆199Updated last year
- Cybersecurity Incident Response Plan☆109Updated 5 years ago
- A list of Splunk queries that I've collected and used over time.☆87Updated 5 years ago
- ☆96Updated 3 months ago
- Automating Security Detection Engineering, published by Packt☆64Updated last year
- Incident Response documents and tooling☆109Updated 2 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆287Updated this week
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- MISP Playbooks☆219Updated last month
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆101Updated last year
- Tools for simulating threats☆197Updated 2 years ago
- This repository contains Splunk queries to hunt some anomalies☆44Updated 3 years ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆30Updated this week
- SentinelOne STAR Rules☆69Updated 9 months ago
- A curated repository of incident response playbooks☆107Updated 2 years ago
- Open Source Security Operations Center Documentation☆202Updated 4 months ago
- A preconfigured Velociraptor triage collector☆56Updated last week
- An opensource sigma conversion tool built using pysigma☆147Updated last month
- Intelligence Architecture Mind Map☆137Updated last year