threatconnect-playbooks
Automation toolkit
Provides tools and frameworks for creating automation and orchestration capabilities within ThreatConnect
Community driven repository of Playbooks and Apps for ThreatConnect.
69 stars
26 watching
67 forks
Language: Python
last commit: 4 months ago
Linked from 1 awesome list
playbookthreatconnectthreatconnect-playbooks
correlatedsecurity/awesome-soarRelated projects:
| Repository | Description | Stars |
|---|---|---|
 phantomcyber/playbooks | Community-developed playbooks and custom functions for Splunk SOAR threat hunting and incident response | 472 |
| threatconnect-inc/threatconnect-developer-docs | Documentation for ThreatConnect's API and SDKs for integrating with the platform | 8 |
 guardsight/gsvsoc_cirt-playbook-battle-cards | A collection of customizable recipes for responding to cyber threats and attacks | 360 |
 opencybersecurityalliance/kestrel-lang | A language and runtime framework for building reusable, composable threat hunting workflows using Python. | 300 |
 ansible-community/ara | Records and analyzes Ansible playbook execution results for easier troubleshooting and understanding. | 1,873 |
 paulpc/nyx | Automates distribution of threat intelligence artifacts to defensive systems. | 30 |
 mlsecproject/combine | Tool to gather Threat Intelligence indicators from publicly available sources | 655 |
 otrf/threathunter-playbook | A community-driven project providing shared detection logic and resources for threat hunting | 4,025 |
 davidonzo/threat-intel | Develops and shares cyber threat intelligence information in various formats for SOC/CSIRT/CERT use. | 148 |
 playgroundbooks/playgroundbook | Automates the creation of Swift Playground books with reusable chapters and pages | 259 |
 a3sal0n/cyberthreathunting | A collection of tools and resources for threat hunters to identify and respond to cyber threats. | 855 |
 aws-samples/aws-incident-response-playbooks | A collection of customizable templates for responding to common AWS security incidents | 926 |
 ansible/network-infra-playbooks | Playbooks and roles for automating networking infrastructure setup and management in CI environments. | 21 |
 pan-unit42/public_tools | A collection of tools and utilities released by the Palo Alto Networks Threat Intelligence team. | 709 |
 datadog/threatest | Tools for testing and verifying threat detection rules | 319 |