Alternatives and similar repositories for Zircolite-Rules

Users that are interested in Zircolite-Rules are comparing it to the libraries listed below

• wagga40 / Mitre2Datatables
  Bring Your Own Mitre Att&ck © Matrix !
  ☆13Updated last year
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 3 years ago
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆50Updated this week
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆42Updated last year
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated last year
• open-source-dfir / slack
  Information about the open-source-dfir slack community
  ☆30Updated 2 years ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆86Updated last year
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated last month
• 00010111 / smbtimeline
  ☆35Updated 10 months ago
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 2 years ago
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆70Updated last year
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆45Updated 4 years ago
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆25Updated last year
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆45Updated 3 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 8 months ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆41Updated last week
• CrowdStrike / xwf-yara-scanner
  ☆88Updated last month
• The-DFIR-Report / Yara-Rules
  ☆69Updated 6 months ago
• M3NIX / sigmaio
  simple webapp for converting sigma rules into siem queries using the pySigma library
  ☆51Updated 2 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆80Updated 3 months ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆56Updated 6 months ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆98Updated last year
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆31Updated last week
• Fadavvi / Yara-Repo
  A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…
  ☆27Updated 2 years ago
• edelucia / rules
  Cyber Threats Detection Rules
  ☆14Updated 3 months ago
• humpalum / vscode-sigma
  ☆16Updated 5 months ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆132Updated last year
• svch0stz / velociraptor-detections
  ☆22Updated 2 years ago
• frack113 / sigma_redcanaryco
  Knowing which rule should trigger according to the redcannary test
  ☆11Updated 9 months ago
• soufianetahiri / ransomware_Incident_Response_FR
  petit "playbook" qui pourrait servir de base à une réponse à incident lors d'une attaque de type ransomware
  ☆21Updated 3 years ago