Security Onion + Automation + Response Lab including n8n and Velociraptor
☆114Sep 14, 2022Updated 3 years ago
Alternatives and similar repositories for DinoSOARLab
Users that are interested in DinoSOARLab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Run Velociraptor on Security Onion☆41Jul 27, 2022Updated 3 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Dec 2, 2025Updated 3 months ago
- Repo to hold mcp server for velociraptor☆32Jul 27, 2025Updated 7 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated last year
- Docker image for Velocidex Velociraptor☆148Dec 29, 2025Updated 2 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆1,062Oct 5, 2023Updated 2 years ago
- ☆54May 14, 2024Updated last year
- PyVelociraptor contains the python bindings for the Velociraptor API.☆21Feb 11, 2026Updated last month
- ☆13Oct 7, 2019Updated 6 years ago
- Digging Deeper....☆3,832Updated this week
- ☆33Jun 27, 2022Updated 3 years ago
- Documentation used for Shuffle☆21Updated this week
- ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.☆135Jul 25, 2019Updated 6 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆80Feb 9, 2026Updated last month
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆179Dec 2, 2025Updated 3 months ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Sep 4, 2021Updated 4 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆54Mar 17, 2026Updated last week
- ☆37Dec 17, 2020Updated 5 years ago
- ☆34Apr 29, 2021Updated 4 years ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆981Aug 26, 2024Updated last year
- Python script for carving Bitlocker VMK keys☆26Feb 4, 2026Updated last month
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- Detect Tactics, Techniques & Combat Threats☆2,269Jan 21, 2026Updated 2 months ago
- ☆14Oct 24, 2024Updated last year
- A curated list of KAPE-related resources☆184May 1, 2025Updated 10 months ago
- DFIRTrack - The Incident Response Tracking Application☆534Jan 13, 2026Updated 2 months ago
- Documentation and scripts to properly enable Windows event logs.☆673Oct 3, 2025Updated 5 months ago
- Small and highly portable detection tests based on MITRE's ATT&CK.☆10Feb 17, 2025Updated last year
- Sigma Detection Rule Repository☆92Jun 18, 2020Updated 5 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆34Feb 20, 2018Updated 8 years ago
- A curated list of awesome things related to TheHive & Cortex☆185Oct 9, 2021Updated 4 years ago
- Resources for SANS CTI Summit 2021 presentation☆104Nov 8, 2023Updated 2 years ago
- Cast is an installer for any compatible Saltstack based distribution like SIFT or REMnux☆135Updated this week
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆258Nov 24, 2023Updated 2 years ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,516Jan 12, 2026Updated 2 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆622Jun 26, 2024Updated last year
- Serverless SOAR (Security Orchestration, Automation and Response) framework for automatic inspection and evaluation of security alert☆51Mar 17, 2026Updated last week