Alternatives and similar repositories for laurel:

Users that are interested in laurel are comparing it to the libraries listed below

• cyb3rfox / Aurora-Incident-Response
  Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
  ☆884Updated last year
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆788Updated last year
• chainguard-dev / osquery-defense-kit
  Production-ready detection & response queries for osquery
  ☆549Updated this week
• TonyPhipps / SIEM
  SIEM Tactics, Techiques, and Procedures
  ☆615Updated 2 weeks ago
• NUKIB / misp
  Docker image for MISP
  ☆123Updated last month
• wagga40 / Zircolite
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆704Updated last month
• atc-project / atc-react
  A knowledge base of actionable Incident Response techniques
  ☆633Updated 2 years ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆387Updated last week
• tclahr / uac
  UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …
  ☆883Updated this week
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆785Updated 4 years ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆435Updated 8 months ago
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆422Updated this week
• correlatedsecurity / Awesome-SOAR
  A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
  ☆848Updated 6 months ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆353Updated this week
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆491Updated 6 months ago
• dfir-iris / iris-web
  Collaborative Incident Response platform
  ☆1,152Updated this week
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆403Updated last month
• MISP / misp-training
  MISP trainings, threat intel and information sharing training materials with source code
  ☆401Updated last month
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆840Updated 2 years ago
• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆382Updated last month
• mitre-attack / bzar
  A set of Zeek scripts to detect ATT&CK techniques.
  ☆578Updated 8 months ago
• mdecrevoisier / EVTX-to-MITRE-Attack
  Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
  ☆553Updated last month
• cyberdefenders / DetectionLabELK
  DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
  ☆552Updated 3 years ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆796Updated 2 weeks ago
• SigmaHQ / pySigma
  Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
  ☆433Updated this week
• volexity / threat-intel
  Signatures and IoCs from public Volexity blog posts.
  ☆349Updated last month
• center-for-threat-informed-defense / attack-flow
  Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…
  ☆591Updated this week
• mdecrevoisier / SIGMA-detection-rules
  Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques
  ☆350Updated last month
• center-for-threat-informed-defense / attack-workbench-frontend
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆344Updated this week
• zeronetworks / BlueHound
  BlueHound - pinpoint the security issues that actually matter
  ☆730Updated last year