Alternatives and similar repositories for rulevis

Users that are interested in rulevis are comparing it to the libraries listed below

• AttackIQ / DetectIQ
  ☆119Updated 7 months ago
• ekky19 / osint
  Have you ever wanted to search a link or IP address on multiple OSINT pages at once?
  ☆59Updated 5 months ago
• davidljohnson / flowviz
  AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK
  ☆195Updated last month
• Galeax / CVE2CAPEC
  Generate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated d…
  ☆258Updated this week
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆123Updated 2 years ago
• jccyberx / Cybether
  Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard
  ☆84Updated 2 weeks ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆193Updated 11 months ago
• LetsDefend / incident-response-playbooks
  ☆190Updated last year
• socfortress / wazuh-mcp-server
  Repo to hold wazuh manager mcp server
  ☆69Updated 3 months ago
• CyberSecurityUP / n8n-CyberSecurity-Workflows
  Security automation with n8n ideas: 100+ Red/Blue/AppSec workflows, integrations, and ready-to-run playbooks.
  ☆225Updated 3 months ago
• rfackroyd / detection-engineering-starter-pack
  A starter pack of resources to help you get started in Detection Engineering.
  ☆177Updated 4 months ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆222Updated 2 months ago
• dfirvault / Thor-scanner-menu
  Menu for Thor scanner lite
  ☆20Updated 2 months ago
• saidhfm / Cloud-Threat-Detection-Lab-AWS
  ☆35Updated last year
• ssultany / 30-Day-SOC-Analyst-Challenge
  A 30-day hands-on SOC Analyst project simulating real-world cyber attacks using ELK Stack, Mythic C2, osTicket & Elastic Defend. Covers t…
  ☆39Updated 6 months ago
• socfortress / SOCFortress-Threat-Intel
  Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
  ☆31Updated last year
• monnappa22 / Garuda-framework
  A comprehensive PowerShell-based threat hunting and incident response framework for Windows environments, built around Sysmon event analy…
  ☆41Updated 5 months ago
• tguard-soc-package / nusantara
  ☆219Updated last year
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆160Updated 8 months ago
• fr0gger / JupyterUniverse
  Jupyter Univere is a search engine for all infosec jupyter notebooks
  ☆33Updated 9 months ago
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆115Updated last year
• Ashfaaq98 / awesome-genai-cyberhub
  A curated list of LLM driven Cyber security Resources
  ☆43Updated 2 months ago
• CiscoCXSecurity / Detection-Engineering-Framework
  ☆95Updated last month
• gbrigandi / mcp-server-wazuh
  MCP Server for Wazuh SIEM
  ☆153Updated 2 weeks ago
• brayden031 / varalyze
  Cyber threat intelligence tool suite.
  ☆42Updated 8 months ago
• iknowjason / AutomatedEmulation
  An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…
  ☆204Updated last month
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆291Updated last month
• rstcloud / rstcloud-import2misp
  Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.
  ☆18Updated 6 months ago
• Krook9d / TA-Purplelab-Splunk
  Splunk add-on related to the PurpleLab tool
  ☆41Updated last year
• cisagov / playbook-ng
  Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…
  ☆152Updated 3 weeks ago