60 results found Sort:

1.5k
9.5k
other
214
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Created 2015-08-11
34,603 commits to master branch, last one 14 hours ago
2.1k
7.8k
other
331
Main Sigma Rule Repository
Created 2016-12-24
16,174 commits to master branch, last one 8 days ago
1.0k
7.2k
other
239
Free and open log management
Created 2010-05-17
24,840 commits to master branch, last one 7 hours ago
362
2.3k
bsd-3-clause
80
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Created 2018-10-03
1,101 commits to master branch, last one 4 months ago
329
2.2k
mpl-2.0
150
DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
This repository has been archived (exclude archived)
Created 2014-02-18
5,995 commits to master branch, last one 2 years ago
🐳 Elastic Stack (ELK) v8+ on Docker with Compose. Pre-configured out of the box to enable Logging, Metrics, APM, Alerting, ML, and SIEM features. Up with a Single Command.
Created 2019-09-07
127 commits to main branch, last one 8 months ago
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
Created 2021-08-06
81 commits to main branch, last one 5 months ago
93
1.4k
apache-2.0
21
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Created 2022-07-03
575 commits to main branch, last one 9 days ago
184
1.1k
cc0-1.0
30
A collection of sources of documentation, as well as field best practices, to build/run a SOC
Created 2022-08-23
656 commits to main branch, last one 6 days ago
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
Created 2019-05-30
313 commits to master branch, last one 9 months ago
188
1.0k
other
39
pfSense/OPNsense + Elastic Stack
Created 2017-11-02
2,550 commits to main branch, last one about a month ago
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
Created 2020-10-17
118 commits to main branch, last one 5 months ago
A collective list of public APIs for use in security. Contributions welcome
Created 2018-01-09
117 commits to master branch, last one about a year ago
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
This repository has been archived (exclude archived)
Created 2015-01-09
35 commits to master branch, last one 5 years ago
85
622
bsd-3-clause
35
Open source security data pipelines.
Created 2010-09-23
21,045 commits to main branch, last one 17 hours ago
23
621
apache-2.0
5
Pipelined Query Language
Created 2024-01-26
118 commits to main branch, last one 2 days ago
97
528
gpl-3.0
32
SIEM Tactics, Techiques, and Procedures
Created 2018-08-02
390 commits to master branch, last one 28 days ago
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
Created 2020-06-23
287 commits to master branch, last one 3 months ago
Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
Created 2020-07-09
179 commits to master branch, last one 3 months ago
103
431
gpl-3.0
27
Security event correlation engine for ELK stack
Created 2018-11-04
601 commits to master branch, last one 3 months ago
84
427
gpl-3.0
31
A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Created 2018-02-08
443 commits to master branch, last one 10 days ago
Encyclopedia for Executables
Created 2020-05-27
75 commits to master branch, last one 2 years ago
Awesome list of keywords and artifacts for Threat Hunting sessions
Created 2023-05-16
419 commits to main branch, last one 7 days ago
210
358
gpl-3.0
31
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Indu...
Created 2019-09-24
179 commits to master branch, last one about a year ago
58
270
gpl-3.0
29
Test Blue Team detections without running any attack.
Created 2018-04-29
131 commits to master branch, last one 2 years ago
Splunk code (SPL) for serious threat hunters and detection engineers.
Created 2017-06-22
41 commits to master branch, last one 5 months ago
Microsoft Sentinel SOC Operations
Created 2020-02-27
362 commits to master branch, last one 7 months ago
64
231
unknown
27
** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
Created 2010-07-09
1,602 commits to master branch, last one 3 years ago
Open-source framework to detect outliers in Elasticsearch events
This repository has been archived (exclude archived)
Created 2018-12-11
1,690 commits to master branch, last one about a year ago
63
197
apache-2.0
14
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
Created 2020-03-17
732 commits to main branch, last one about a year ago