27 results found Sort:

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️
Created 2018-01-13
148 commits to master branch, last one about a year ago
This repository has no description...
Created 2020-06-17
2,574 commits to main branch, last one 2 days ago
226
1.9k
apache-2.0
38
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Created 2022-01-07
698 commits to main branch, last one 6 days ago
Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure
Created 2023-01-31
5,663 commits to master branch, last one 2 days ago
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying m...
Created 2020-09-26
129 commits to main branch, last one 13 days ago
129
878
agpl-3.0
39
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Created 2020-09-01
432 commits to master branch, last one 24 days ago
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
Created 2020-11-02
30 commits to main branch, last one about a month ago
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
Created 2022-07-19
357 commits to main branch, last one 7 days ago
25
433
gpl-3.0
11
Threat-hunting tool for Linux
Created 2023-06-21
580 commits to main branch, last one 3 days ago
A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalone or with other job schedulers like Nomad.
Created 2024-09-30
11 commits to main branch, last one 4 months ago
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
Created 2022-01-11
288 commits to main branch, last one 7 months ago
22
324
apache-2.0
13
Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
Created 2022-06-16
99 commits to main branch, last one about a year ago
27
236
agpl-3.0
9
Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
Created 2023-09-19
1,631 commits to main branch, last one 2 days ago
2
134
agpl-3.0
8
select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, right from your terminal.
Created 2024-04-18
216 commits to develop branch, last one 3 days ago
Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
Created 2021-02-01
79 commits to main branch, last one about a year ago
ThreatSeeker: Threat Hunting via Windows Event Logs
Created 2023-04-11
4 commits to master branch, last one about a year ago
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to cont...
Created 2020-04-21
90 commits to master branch, last one 3 years ago
🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
Created 2024-12-15
118 commits to main branch, last one 18 days ago
Sigma detection rules for hunting with the threathunting-keywords project
Created 2023-08-02
87 commits to main branch, last one 4 days ago
An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
Created 2021-11-21
6 commits to main branch, last one 2 years ago
Threat Detection & Anomaly Detection rules for popular open-source components
Created 2020-08-07
31 commits to master branch, last one 2 years ago
An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat D...
Created 2021-12-12
13 commits to main branch, last one 2 years ago
A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.
Created 2024-11-06
107 commits to main branch, last one 12 days ago
4
35
apache-2.0
1
A simple tool designed to create Atomic Red Team tests with ease.
Created 2024-11-22
22 commits to main branch, last one about a month ago
To be used with tools like GoBuster & DirBuster but these lists are specifically tailored and designed for scanning phishing <>< landing pages and other malicious or sketch af financial/crypto fraud w...
Created 2023-01-26
129 commits to main branch, last one 5 days ago