Alternatives and similar repositories for ThreatPlays

Users that are interested in ThreatPlays are comparing it to the libraries listed below

• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆27Updated 4 years ago
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆24Updated last year
• chandunsa / IRP
  Incident Response Playbooks
  ☆14Updated 6 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 8 months ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 4 years ago
• Mostafayahia-hunter / Virustotal-python-API-Domains-IPs-and-URLs-
  ☆21Updated 3 years ago
• TonyPhipps / Elasticstack
  FIles and guides related to using Elasticstack as a SIEM
  ☆12Updated 5 years ago
• vadim-hunter / Threat-Hunters-KB
  Threat Hunter's Knowledge Base
  ☆22Updated 3 years ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆77Updated 4 years ago
• randomuserid / Baltar
  Searches for Insider Threat Hunting
  ☆32Updated 6 years ago
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆54Updated 3 years ago
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆35Updated 5 months ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆32Updated 2 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆44Updated 4 years ago
• johnfranolich / Hunting-Scripts
  A collection of hunting and blue team scripts. Mostly others, some my own.
  ☆37Updated 2 years ago
• DefensiveOrigins / Training
  Defensive Origins Training Schedule
  ☆38Updated last year
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆44Updated last year
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• shr3ddersec / ThreatHunting
  Reference sheet for Threat Hunting Professional Course
  ☆25Updated 6 years ago
• guardsight / gsvsoc_mission-model
  Incident Response Report Using GitHub-Sphinx
  ☆20Updated 5 years ago
• jhainly / det3ct-the-att-ck
  SIEM Detection Use Case Library mapped to MITRE ATT&CK tactics and techniques
  ☆12Updated 6 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 4 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 3 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆16Updated 9 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• sans-blue-team / sec555-wiki
  ☆77Updated 6 years ago
• jafarspalace / Crowdstrike-Falcon-Scripts
  Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation
  ☆23Updated 6 months ago