st0pp3r / awesome-soc-analystLinks
Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, podcasts, Twitter/X accounts and a set of tools relevant to the role of SOC analyst.
☆24Updated last month
Alternatives and similar repositories for awesome-soc-analyst
Users that are interested in awesome-soc-analyst are comparing it to the libraries listed below
Sorting:
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆261Updated 5 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- Advanced Threat Hunting: Ransomware Group☆28Updated last month
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆113Updated 9 months ago
- Some important DFIR Resources☆83Updated 2 years ago
- A repository of my own Sigma detection rules.☆160Updated 11 months ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆97Updated last year
- A starter pack of resources to help you get started in Detection Engineering.☆172Updated this week
- Practical Threat Detection Engineering, Published by Packt☆76Updated 2 years ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆271Updated this week
- ☆80Updated 3 weeks ago
- Incident Response documents and tooling☆75Updated last year
- ☆28Updated 5 months ago
- Intelligence Architecture Mind Map☆134Updated last year
- MISP Playbooks☆207Updated 2 months ago
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆28Updated 8 months ago
- ☆45Updated 2 years ago
- Cybersecurity Incident Response Plan☆97Updated 4 years ago
- Repository of public reference frameworks for the DFIR community.☆117Updated 2 years ago
- Automating Security Detection Engineering, published by Packt☆62Updated 10 months ago
- A list of Splunk queries that I've collected and used over time.☆86Updated 4 years ago
- A Windows Event Log MCP☆26Updated this week
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆80Updated 3 years ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆47Updated 3 months ago
- ☆52Updated last year
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- A preconfigured Velociraptor triage collector☆52Updated this week
- An opensource sigma conversion tool built using pysigma☆132Updated this week
- Tools for simulating threats☆192Updated last year
- Dettectinator - The Python library to your DeTT&CT YAML files.☆116Updated 4 months ago