st0pp3r / awesome-soc-analystLinks
Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, podcasts, Twitter/X accounts and a set of tools relevant to the role of SOC analyst.
☆19Updated this week
Alternatives and similar repositories for awesome-soc-analyst
Users that are interested in awesome-soc-analyst are comparing it to the libraries listed below
Sorting:
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆265Updated this week
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆260Updated 3 months ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆199Updated last year
- Open Source Security Operations Center Documentation☆188Updated 2 weeks ago
- This repository contains various threat hunting tools written in Python and is documented in the series Python Threat Hunting Tools which…☆15Updated last year
- MISP to Sentinel integration☆68Updated last month
- Config files for my GitHub profile.☆14Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆112Updated 7 months ago
- A list of Splunk queries that I've collected and used over time.☆85Updated 4 years ago
- Tools for simulating threats☆188Updated last year
- MISP Playbooks☆206Updated last month
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆78Updated 3 years ago
- Some important DFIR Resources☆83Updated 2 years ago
- A 30-day hands-on SOC Analyst project simulating real-world cyber attacks using ELK Stack, Mythic C2, osTicket & Elastic Defend. Covers t…☆32Updated last month
- An opensource sigma conversion tool built using pysigma☆131Updated last month
- A repository of my own Sigma detection rules.☆159Updated 10 months ago
- A curated repository of incident response playbooks☆92Updated 2 years ago
- ☆28Updated 3 months ago
- SentinelOne STAR Rules☆63Updated 5 months ago
- A starter pack of resources to help you get started in Detection Engineering.☆132Updated last week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- Harness the power of Splunk for your investigations☆116Updated 3 weeks ago
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆204Updated 10 months ago
- A preconfigured Velociraptor triage collector☆52Updated this week
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Practical Threat Detection Engineering, Published by Packt☆75Updated 2 years ago
- Pipeline that allows sending forensic artifacts to OpenRelik for automatic processing☆30Updated last month
- ☆45Updated 2 years ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Updated last year
- Incident Response documents and tooling☆74Updated last year