wagov / wasocsharedLinks
WA Cyber Security Unit (DGOV Technical) site
☆44Updated last week
Alternatives and similar repositories for wasocshared
Users that are interested in wasocshared are comparing it to the libraries listed below
Sorting:
- A tool that allows you to document and assess any security automation in your SOC☆48Updated last year
- ☆47Updated 3 years ago
- ☆88Updated 9 months ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆130Updated 5 years ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆55Updated 2 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆60Updated 3 years ago
- Elevate your Security Operations Center's efficiency with Howler, the cutting-edge alert triage platform tailored for today's SOC demands…☆43Updated this week
- Dettectinator - The Python library to your DeTT&CT YAML files.☆119Updated 8 months ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Updated 4 years ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆132Updated last year
- Cybersecurity Incident Response Plan☆109Updated 5 years ago
- Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…☆152Updated 3 weeks ago
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆50Updated 6 months ago
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- Anvilogic Forge☆113Updated 3 months ago
- Automating Security Detection Engineering, published by Packt☆65Updated last year
- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…☆41Updated 5 years ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆54Updated 2 years ago
- Unleash the power of the Falcon Platform at the CLI☆133Updated 2 months ago
- ☆74Updated last year
- SigmaHQ pySigma CrowdStrike processing pipeline☆27Updated last month
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆167Updated last week
- The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…☆148Updated 5 months ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆85Updated last year
- A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).☆50Updated last month
- MISP to Sentinel integration☆79Updated 3 weeks ago
- Generate a matrix based on an inventory of InfoSec tools☆23Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆81Updated last year
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆100Updated last week
- A dataset containing Office 365 Unified Audit Logs for security research and detection☆60Updated 3 years ago