veeral-patel / true-positive

Related projects ⓘ

Alternatives and complementary repositories for true-positive

• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆23Updated 3 years ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆84Updated last week
• Shuffle / workflows
  Workflows for Shuffle
  ☆20Updated 2 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆61Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆53Updated 3 years ago
• misje / opencti-wazuh-connector
  OpenCTI–Wazuh connector looking for indicators in Wazuh and creating sightings
  ☆15Updated 3 months ago
• guardsight / gsvsoc_mission-model
  Incident Response Report Using GitHub-Sphinx
  ☆19Updated 5 years ago
• cutaway-security / sawh
  Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…
  ☆50Updated 3 years ago
• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆15Updated 3 years ago
• CyberSift / OSQUERY-PACKS
  Osquery Packs we use for customer security hardening
  ☆12Updated last month
• cdefid / TheHiveIRPlaybook
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆12Updated 4 years ago
• wagga40 / Mitre2Datatables
  Bring Your Own Mitre Att&ck © Matrix !
  ☆13Updated last year
• melicertes / csp
  The Cyber Security Platform MeliCERTes is part of the European Strategy for Cyber Security. MeliCERTes is a network for establishing conf…
  ☆31Updated 2 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆38Updated 6 months ago
• securitydistractions / elastimispstash
  ☆29Updated 3 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 2 years ago
• dogoncouch / siemstress
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆35Updated 6 years ago
• target / strelka-ui
  Strelka Web UI for File Submission and Analysis
  ☆57Updated 3 months ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• gerwout / pacs
  Pritunl Access Control System
  ☆10Updated last year
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆31Updated 2 years ago
• imp0rtp3 / yara-rules
  Yara rules written by me, for free use.
  ☆18Updated 2 years ago
• Shuffle / Shuffle-docs
  Documentation used for Shuffle
  ☆18Updated last week
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆15Updated 5 months ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆58Updated 7 months ago
• high101bro / PoSh-EasyWin
  PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs
  ☆46Updated 9 months ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆11Updated 4 years ago
• Truvis / Splunk_TA_Truvis_Suricata5
  This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…
  ☆15Updated 4 years ago