Automatic detection engineering technical state compliance
☆55Jul 7, 2024Updated last year
Alternatives and similar repositories for Automata
Users that are interested in Automata are comparing it to the libraries listed below
Sorting:
- OSSEM Modular☆27Jun 29, 2020Updated 5 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated 11 months ago
- ☆15Jul 20, 2022Updated 3 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆129Apr 3, 2025Updated 10 months ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆785Feb 22, 2026Updated last week
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 3 years ago
- Sys Mon! Why yu nuh logging dat?☆12Dec 10, 2018Updated 7 years ago
- An ELK environment containing interesting security datasets.☆136May 11, 2020Updated 5 years ago
- ☆19Oct 23, 2020Updated 5 years ago
- Threat Alert Logic Repository☆93Feb 7, 2019Updated 7 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆91Dec 8, 2022Updated 3 years ago
- Anything Sysmon related from the MSTIC R&D team☆156Jun 8, 2024Updated last year
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Jul 23, 2020Updated 5 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Aug 29, 2021Updated 4 years ago
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆158Nov 30, 2021Updated 4 years ago
- Serverless honeytoken 🕵🏻♂️☆81Jan 10, 2023Updated 3 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Mar 23, 2020Updated 5 years ago
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆21Mar 11, 2021Updated 4 years ago
- Manticore Adversary Emulation Cli☆47Aug 4, 2020Updated 5 years ago
- Threat Hunting & Incident Investigation with Osquery☆216Mar 30, 2022Updated 3 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆115Mar 26, 2023Updated 2 years ago
- ☆39Jul 29, 2021Updated 4 years ago
- Silencing Sysmon via driver unload☆235Oct 13, 2022Updated 3 years ago
- Pushes Sysmon Configs☆90Jun 11, 2021Updated 4 years ago
- ☆17Oct 26, 2018Updated 7 years ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago
- ☆28Mar 29, 2022Updated 3 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Mar 3, 2021Updated 4 years ago
- A set of tools, procedures, and playbooks for performing bug bounties☆17Dec 2, 2018Updated 7 years ago
- ☆34Aug 8, 2023Updated 2 years ago
- PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monit…☆843Updated this week
- This is a repository that is meant to hold detections for various process injection techniques.☆34Mar 3, 2020Updated 5 years ago
- ☆16May 15, 2021Updated 4 years ago
- Open-source framework to detect outliers in Elasticsearch events☆206May 22, 2023Updated 2 years ago
- Active Directory Purple Team Playbook☆116May 8, 2023Updated 2 years ago
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 3 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆52Sep 1, 2023Updated 2 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆223May 1, 2021Updated 4 years ago
- Detection Ideas & Rules repository.☆178Sep 10, 2021Updated 4 years ago