wagov / wasocsharedLinks
WA Cyber Security Unit (DGOV Technical) site
☆40Updated this week
Alternatives and similar repositories for wasocshared
Users that are interested in wasocshared are comparing it to the libraries listed below
Sorting:
- A tool that allows you to document and assess any security automation in your SOC☆46Updated 9 months ago
- ☆86Updated 5 months ago
- The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…☆143Updated last month
- MISP to Sentinel integration☆71Updated last week
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated last year
- Dettectinator - The Python library to your DeTT&CT YAML files.☆116Updated 4 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆113Updated 9 months ago
- Security Scripts and Sources for daily usage.☆65Updated 2 months ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆125Updated 4 years ago
- Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…☆130Updated 3 weeks ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆76Updated last week
- Anvilogic Forge☆106Updated 2 weeks ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆156Updated 6 months ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆55Updated 2 years ago
- A collection of ARM-based detections for Azure/AzureAD based TTPs☆88Updated last year
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Updated 3 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- ☆96Updated 2 years ago
- NIST CSF Maturity Toolkit☆70Updated 2 months ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆226Updated this week
- ☆45Updated 2 years ago
- Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant.☆129Updated 2 months ago
- A collection of various SIEM rules relating to malware family groups.☆69Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆76Updated last year
- A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).☆40Updated 5 months ago
- ☆42Updated last month
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆50Updated 2 months ago
- SentinelOne STAR Rules☆67Updated 6 months ago
- Cybersecurity Incident Response Plan☆97Updated 4 years ago
- Generate a matrix based on an inventory of InfoSec tools☆23Updated last year