detection-engineering

Star

Here are 16 public repositories matching this topic...

sbousseaden / EVTX-ATTACK-SAMPLES

Star

Windows Events Attack Samples

dfir dataset threat-hunting winlogbeat mitre-attack evtx windows-security detection-engineering

Updated Dec 12, 2021
HTML

mvelazc0 / PurpleSharp

Star

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

purple-team adversary-simulation detection-engineering controls-validation

Updated Dec 19, 2021
C#

splunk / security_content

Star

Splunk Security Content

engineering splunk detection cybersecurity cicd responses detection-engineering

Updated Jan 29, 2022
Python

DataDog / stratus-red-team

Star

☁️

⚡ Granular, Actionable Adversary Emulation for the Cloud.

aws cloud-security mitre-attack adversary-emulation purple-team detection-engineering cloud-native-security

Updated Jan 28, 2022
Go

sbousseaden / Slides

Star

Misc Threat Hunting Resources

dfir threat-hunting mindmap detection-engineering

Updated Oct 26, 2021

mvelazc0 / attack2jira

Star

attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage

mitre mitre-attack detection-engineering attack-coverage

Updated Jun 20, 2021
Python

3CORESec / SIEGMA

Star

SIEGMA - Transform Sigma rules into SIEM consumables

security data-driven siem sigma detection-engineering

Updated Jan 27, 2022
Python

nasbench / SIGMA-Resources

Star

Resources To Learn And Understand SIGMA Rules

windows linux rules learning awesome detection resources sigma detection-engineering sigma-rules

Updated Oct 22, 2021

3CORESec / Automata

Star

Automatic detection engineering technical state compliance

detection sigma caldera detection-engineering

Updated Jan 18, 2022
Python

infosecB / awesome-detection-engineering

Star

A list of useful Detection Engineering-related resources.

awesome splunk awesome-list mitre detection-engineering

Updated Nov 25, 2021

bradleyjkemp / sigma-go

Sponsor

Star

A Go implementation and parser for Sigma rules.

sigma detection-engineering

Updated Jan 18, 2022
Go

lawndoc / AdvancedHuntingQueries

Sponsor

Star

Microsoft 365 Advanced Hunting queries written in Kusto Query Language (KQL)

microsoft security detection cybersecurity defender threat-hunting xdr hunting cyber-security kusto microsoft365 kql detection-engineering defender-atp defender-for-endpoint

Updated Jan 3, 2022

3CORESec / dtio-kb

Star

Technical resources and knowledge base for dtection.io

nids sigma snort-rules suricata-rules detection-engineering

Updated Jun 3, 2021
Shell

infosecB / detection-as-code

Star

An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.

cybersecurity blueteam threat-detection detection-engineering

Updated Nov 21, 2021
Python

infosecB / generate_attacknav_layer

Star

A Python CLI utility for quickly converting a list or text file of MITRE ATT&CK technique IDs to a MITRE ATT&CK Navigator layer .JSON file.

threat-intelligence mitre-attack threat-detection detection-engineering

Updated Nov 30, 2021
Python

crazyeights225 / WinEventLogExplorer

Star

Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events

windows sysmon powershell-script windows-eventlog blue-team windows-event-log detection-engineering

Updated Sep 5, 2021
PowerShell

Improve this page

Add a description, image, and links to the detection-engineering topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the detection-engineering topic, visit your repo's landing page and select "manage topics."

Learn more

Dec	JAN	Feb
	30
2021	2022	2023