60 results found Sort:
- Filter by Primary Language:
- Python (16)
- PowerShell (6)
- Go (4)
- Java (4)
- Shell (2)
- C# (2)
- Rust (1)
- TSQL (1)
- C (1)
- YARA (1)
- C++ (1)
- Dockerfile (1)
- HCL (1)
- HTML (1)
- JavaScript (1)
- +
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Created
2015-08-11
34,603 commits to master branch, last one 14 hours ago
Main Sigma Rule Repository
Created
2016-12-24
16,174 commits to master branch, last one 8 days ago
Free and open log management
Created
2010-05-17
24,840 commits to master branch, last one 7 hours ago
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Created
2018-10-03
1,101 commits to master branch, last one 4 months ago
DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
This repository has been archived
(exclude archived)
Created
2014-02-18
5,995 commits to master branch, last one 2 years ago
🐳 Elastic Stack (ELK) v8+ on Docker with Compose. Pre-configured out of the box to enable Logging, Metrics, APM, Alerting, ML, and SIEM features. Up with a Single Command.
Created
2019-09-07
127 commits to main branch, last one 8 months ago
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
dfir
siem
osint
alerting
security
forensics
mitre-attack
port-scanning
cyber-security
forensics-tools
digitalforensics
network-security
digital-forensics
forensic-analysis
offensive-security
intrusion-detection
threat-intelligence
detection-engineering
digitalforensicreadiness
forensics-investigations
Created
2021-08-06
81 commits to main branch, last one 5 months ago
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Created
2022-07-03
575 commits to main branch, last one 9 days ago
A collection of sources of documentation, as well as field best practices, to build/run a SOC
Created
2022-08-23
656 commits to main branch, last one 6 days ago
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
Created
2019-05-30
313 commits to master branch, last one 9 months ago
pfSense/OPNsense + Elastic Stack
Created
2017-11-02
2,550 commits to main branch, last one about a month ago
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
siem
infosec
compliance
kali-linux
pentesters
mitre-attack
surveillance
scanning-tool
cyber-security
forensics-tools
vulnerabilities
network-analysis
incident-response
offensive-security
privacy-protection
incident-management
intrusion-detection
information-security
detection-engineering
vulnerability-detection
Created
2020-10-17
118 commits to main branch, last one 5 months ago
A collective list of public APIs for use in security. Contributions welcome
Created
2018-01-09
117 commits to master branch, last one about a year ago
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
This repository has been archived
(exclude archived)
Created
2015-01-09
35 commits to master branch, last one 5 years ago
Open source security data pipelines.
Created
2010-09-23
21,045 commits to main branch, last one 17 hours ago
Pipelined Query Language
Created
2024-01-26
118 commits to main branch, last one 2 days ago
SIEM Tactics, Techiques, and Procedures
Created
2018-08-02
390 commits to master branch, last one 28 days ago
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
Created
2020-06-23
287 commits to master branch, last one 3 months ago
Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
Created
2020-07-09
179 commits to master branch, last one 3 months ago
Security event correlation engine for ELK stack
Created
2018-11-04
601 commits to master branch, last one 3 months ago
A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Created
2018-02-08
443 commits to master branch, last one 10 days ago
Encyclopedia for Executables
Created
2020-05-27
75 commits to master branch, last one 2 years ago
Awesome list of keywords and artifacts for Threat Hunting sessions
Created
2023-05-16
419 commits to main branch, last one 7 days ago
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Indu...
Created
2019-09-24
179 commits to master branch, last one about a year ago
Test Blue Team detections without running any attack.
Created
2018-04-29
131 commits to master branch, last one 2 years ago
Splunk code (SPL) for serious threat hunters and detection engineers.
Created
2017-06-22
41 commits to master branch, last one 5 months ago
Microsoft Sentinel SOC Operations
Created
2020-02-27
362 commits to master branch, last one 7 months ago
** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
Created
2010-07-09
1,602 commits to master branch, last one 3 years ago
Open-source framework to detect outliers in Elasticsearch events
This repository has been archived
(exclude archived)
Created
2018-12-11
1,690 commits to master branch, last one about a year ago
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
Created
2020-03-17
732 commits to main branch, last one about a year ago