6 results found Sort:

mandiant
thiri-notebook mandiant
15
152
apache-2.0
10
The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat hunting rules.
yara snort threat-hunting detection-rules
This repository has been archived (exclude archived)
Created 2022-04-20
4 commits to main branch, last one 2 years ago
sublime-security
sublime-platform sublime-security
13
151
mit
7
A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and control, hunt for advanced threats, collaborate with the community, ...
phishing security email-security security-tools detection-rules phishing-detection
Created 2021-04-17
195 commits to main branch, last one 2 days ago
checkmarble
marble checkmarble
8
134
other
1
Marble - the real time decision engine for fraud and AML
aml risk nocode realtime rule-based rule-engine decision-api case-management decision-making detection-rules fraud-detection money-laundering financial-services compliance-platform compliance-automation
Created 2024-01-17
70 commits to main branch, last one 2 days ago
0xAnalyst
DefenderATPQueries 0xAnalyst
5
54
gpl-3.0
2
Hunting Queries for Defender ATP
kql defender-atp detection-rules detection-engineering
Created 2023-09-12
176 commits to main branch, last one a day ago
cylaris
awesomekql cylaris
5
47
gpl-3.0
3
Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
kql siem azure detection detection-rules
Created 2020-10-29
148 commits to main branch, last one 11 months ago
mthcht
ThreatHunting-Keywords-sigma-rules mthcht
4
41
unknown
2
Sigma detection rules for hunting with the threathunting-keywords project
dfir siem blueteam sigma-rules mitre-attack threathunting threat-hunting detection-rules threat-detection forensicartifacts detection-engineering
Created 2023-08-02
78 commits to main branch, last one 9 days ago