Alternatives and similar repositories for dbir:

Users that are interested in dbir are comparing it to the libraries listed below

• mitre-attack / attack-datasources
  This content is analysis and research of the data sources currently listed in ATT&CK.
  ☆407Updated last year
• center-for-threat-informed-defense / public-resources
  Collection of resources related to the Center for Threat-Informed Defense
  ☆77Updated 7 months ago
• sfakiana / SANS-CTI-Summit-2021
  Resources for SANS CTI Summit 2021 presentation
  ☆102Updated last year
• vz-risk / veris
  Vocabulary for Event Recording and Incident Sharing (VERIS)
  ☆584Updated 3 weeks ago
• mitre / cascade-server
  CASCADE Server
  ☆264Updated 2 years ago
• carlota / showmethemoney
  These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…
  ☆70Updated 2 months ago
• mitre / attack-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆57Updated 5 years ago
• center-for-threat-informed-defense / insider-threat-ttp-kb
  The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…
  ☆142Updated 4 months ago
• HASecuritySolutions / Presentations
  ☆131Updated 9 months ago
• center-for-threat-informed-defense / attack_to_cve
  🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…
  ☆233Updated 9 months ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆240Updated 3 years ago
• Insider-Threat / Insider-Threat
  Creating a resource to help build and manage an Insider Threat program.
  ☆64Updated this week
• center-for-threat-informed-defense / attack-workbench-frontend
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆333Updated this week
• center-for-threat-informed-defense / attack_to_veris
  🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here …
  ☆73Updated 9 months ago
• olafhartong / ATTACKdatamap
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆350Updated 4 years ago
• d3fend / d3fend
  Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology
  ☆74Updated 3 weeks ago
• DefensiveOrigins / AtomicPurpleTeam
  Atomic Purple Team Framework and Lifecycle
  ☆284Updated 3 years ago
• JPMinty / MindMaps
  Collection of created MindMaps
  ☆150Updated last year
• d3sre / Use_Case_Applicability
  Security Monitoring Resolution Categories
  ☆138Updated 3 years ago
• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆378Updated 9 months ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆120Updated 4 years ago
• vz-risk / VCDB
  VERIS Community Database
  ☆584Updated this week
• brianwifaneye / NIST-CSF
  NIST CyberSecurity Framework management tool
  ☆159Updated 3 years ago
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆174Updated 2 years ago
• pan-unit42 / playbook_viewer
  ☆170Updated 6 months ago
• k-bailey / detection-engineering-maturity-matrix
  ☆91Updated 2 years ago
• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆195Updated 4 years ago
• joshzelonis / attack-eval-scoring
  This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…
  ☆95Updated 4 years ago
• TactiKoolSec / OTHF
  Open Threat Hunting Framework
  ☆105Updated last year