Alternatives and similar repositories for tm-v1

Users that are interested in tm-v1 are comparing it to the libraries listed below

• JPCERTCC / MemoryForensic-on-Cloud
  Memory Forensic System on Cloud
  ☆92Updated last year
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆65Updated 9 months ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆29Updated 2 years ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated last year
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Updated 2 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Updated 5 years ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆129Updated 5 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆100Updated 3 years ago
• fbprogmbh / Hardening-Audit-Tool-AuditTAP
  FBPro Audit Test Automation Package allows you to create compliance reports for your systems. The resulting HTML-reports provide a transp…
  ☆140Updated last week
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆155Updated last year
• PwC-IR / Office-365-Extractor
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆264Updated 3 years ago
• Security-Onion-Solutions / securityonion-image
  ☆52Updated last week
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆41Updated 10 months ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆47Updated last year
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆41Updated 5 years ago
• jangeisbauer / AdvancedHunting
  Advanced Hunting Queries for Microsoft Security Products
  ☆108Updated 2 years ago
• center-for-threat-informed-defense / public-resources
  Collection of resources related to the Center for Threat-Informed Defense
  ☆76Updated last year
• elastic / endpoint
  ☆41Updated 7 months ago
• redcanaryco / surveyor
  A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.
  ☆242Updated 7 months ago
• invictus-ir / IOCs
  Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more
  ☆29Updated last week
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆57Updated 5 months ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆79Updated 5 months ago
• MSAdministrator / goattck
  A Golang CLI for the MITRE ATT&CK Framework
  ☆13Updated 6 months ago
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆97Updated last year
• f-bader / XDRStoryParser
  Visualize Microsoft Defender XDR process trees and security events
  ☆33Updated 2 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆91Updated last year
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆32Updated 3 years ago