Topic: detection-engineering Goto Github
Some thing interesting about detection-engineering
Some thing interesting about detection-engineering
detection-engineering,Signature engine for all your logs
Organization: 0xrawsec
detection-engineering,Technical resources and knowledge base for dtection.io
Organization: 3coresec
Home Page: https://dtection.io
detection-engineering,SIEGMA - Transform Sigma rules into SIEM consumables
Organization: 3coresec
Home Page: https://blog.3coresec.com/search/label/DaC
detection-engineering,Digital Forensics Incident Response and Detection engineering: Análisis forense de artefactos comunes y no tan comunes. Técnicas anti-forense y detección de técnicas utilizadas por actores maliciosos para la evasión de sistemas de protección y monitorización.
User: adrianlois
detection-engineering,Anvilogic Forge
User: anvilogic-forge
Home Page: https://www.anvilogic.com
detection-engineering,Short deep dive into Threat Hunting on AWS
User: benjitrapp
Home Page: https://benjitrapp.github.io/
detection-engineering,A Go implementation and parser for Sigma rules.
User: bradleyjkemp
detection-engineering,The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activities associated with its practice.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.io/m3tid
detection-engineering,Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research includes a scoring model, methodology, and worked examples.
Organization: center-for-threat-informed-defense
Home Page: https://ctid.io/summiting-the-pyramid
detection-engineering,Sigma Queries turned into KQL for Defender using pysigma
User: codebyharri
detection-engineering,Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
User: controlcompass
Home Page: https://controlcompass.github.io
detection-engineering,Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events
User: crazyeights225
detection-engineering,Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
User: cyb3r-monk
detection-engineering,My Detection Engineering and Threat Hunting (DEATH) Lab.
User: cyberphor
detection-engineering,Machine learning notebooks using cybersecurity data
Organization: databricks-industry-solutions
detection-engineering,:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Organization: datadog
Home Page: https://stratus-red-team.cloud
detection-engineering,Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
Organization: datadog
Home Page: https://securitylabs.datadoghq.com/articles/threatest-end-to-end-testing-threat-detection/
detection-engineering, 🔭 Threat report analysis via LLM and Vector DB
User: deadbits
Home Page: https://trs.deadbits.ai
detection-engineering,Resource for all things threat detection
User: erickatwork
detection-engineering,De-facto parent tenant for Carbon Black Enterprise EDR
User: fish-not-phish
Home Page: https://fish-not-phish.com/
detection-engineering,A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.
User: h3llka1ser
detection-engineering,Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
User: infosecb
detection-engineering,An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
User: infosecb
Home Page: https://infosecb.medium.com/8a8fe7c65676?source=friends_link&sk=e8357bc01aeb2986e05d12d392b068da
detection-engineering,A Python CLI utility for quickly converting a list or text file of MITRE ATT&CK technique IDs to a MITRE ATT&CK Navigator layer .JSON file.
User: infosecb
detection-engineering,Research, Rules, Books, Tools and more basic stuff you can get anywhere
User: jakeperalta7
Home Page: https://jakeperalta7.github.io/CyberSecurity/
detection-engineering,Repo for my detection rules in system relative formatting
User: khadinxc
detection-engineering,Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant
User: lawndoc
detection-engineering,simple webapp for converting sigma rules into siem queries using the pySigma library
User: m3nix
Home Page: https://sigmaio.app
detection-engineering,Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Organization: matanolabs
Home Page: https://matano.dev
detection-engineering,Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
User: mikeroyal
detection-engineering,Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
User: mikeroyal
detection-engineering,Purpleteam scripts simulation & Detection - trigger events for SOC detections
User: mthcht
detection-engineering,Awesome list of keywords and artifacts for Threat Hunting sessions
User: mthcht
Home Page: https://mthcht.github.io/ThreatHunting-Keywords/
detection-engineering,Sigma detection rules for hunting with the threathunting-keywords project
User: mthcht
detection-engineering,yara detection rules for hunting with the threathunting-keywords project
User: mthcht
detection-engineering,attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
User: mvelazc0
detection-engineering,PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
User: mvelazc0
detection-engineering,Resources To Learn And Understand SIGMA Rules
User: nasbench
detection-engineering,A Step by Step Guide for Cyber Security Beginners to Jump into the right path
User: qasimqlf
detection-engineering,A collection of various SIEM rules relating to malware family groups.
Organization: reversinglabs
detection-engineering,Cloud-DART is a comprehensive repository that provides Standard Operating Procedures (SOPs), Jupyter Notebooks, and code blocks for detection and response in cloud environments. This repository is designed to assist security professionals in automating and enhancing their cloud security posture.
User: rgi-group
Home Page: https://901bingo.notion.site/901bingo/Project-SLAM-6a32301dbb4a445ea2aca967ef2fe45b
detection-engineering,Pipelined Query Language
Organization: runreveal
Home Page: https://pql.dev
detection-engineering,Windows Events Attack Samples
User: sbousseaden
Home Page: https://github.com/sbousseaden/EVTX-ATTACK-SAMPLES
detection-engineering,Misc Threat Hunting Resources
User: sbousseaden
detection-engineering,Crypto Census - A One-Stop-Shop for Crypto Domain Aggregation
User: sou-predictable
detection-engineering,Splunk Security Content
Organization: splunk
Home Page: https://research.splunk.com
detection-engineering,A POC to implement Detection-as-Code with Terraform and Sumo Logic.
User: threat-punter
detection-engineering,Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
User: west-wind
detection-engineering,Threat Detection Repository - YARA / SIGMA rules
User: whichbuffer
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.