Alternatives and similar repositories for santamon

Users that are interested in santamon are comparing it to the libraries listed below

• runreveal / sigmalite
  ☆51Updated last month
• Permiso-io-tools / bucket-shield
  ☆14Updated 3 weeks ago
• google / facade
  ☆137Updated 5 months ago
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 11 months ago
• DuneGroup / ice-axe
  ☆23Updated last year
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆119Updated last month
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆32Updated last year
• n0jam / gcp-ctf-workshop
  ☆41Updated last year
• AppOmni-Labs / event-maturity-matrix
  The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…
  ☆30Updated 7 months ago
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Updated 2 years ago
• Permiso-io-tools / cloudtail
  ☆30Updated 2 weeks ago
• bilals12 / clusterfuck
  ☆40Updated 2 months ago
• cado-security / AWS_EKS_Cluster_Forensics
  AWS EKS Cluster Forensics
  ☆23Updated 4 years ago
• Permiso-io-tools / SkyScalpel
  ☆46Updated last year
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆83Updated last month
• PaloAltoNetworks / github-oidc-utils
  ☆36Updated 9 months ago
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• hazcod / shade
  PoC shadow SaaS and insecure credential detection system using a browser extension.
  ☆41Updated 2 months ago
• SentineLabs / macos-ttps-yara
  A ruleset to find potentially malicious code in macOS malware samples
  ☆41Updated 2 years ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆61Updated 6 months ago
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆17Updated last year
• Permiso-io-tools / capiche
  ☆18Updated 3 weeks ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆30Updated 2 years ago
• madhuakula / spotter
  Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…
  ☆69Updated 4 months ago
• offensive-actions / release-tampering-pocs
  Proof of Concepts for malicious maintainers: How to Tamper with Releases built with GitHub Actions Worfklows, presented at fwd:cloudsec E…
  ☆77Updated 4 months ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆31Updated 2 years ago
• SecurityRunners / cloud-exposure-catalog
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Updated last year
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆93Updated 2 months ago
• nianticlabs / modron
  Modron - Cloud security compliance
  ☆34Updated last year
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆38Updated last year