Automatic detection engineering technical state compliance
☆55Jul 7, 2024Updated last year
Alternatives and similar repositories for Automata
Users that are interested in Automata are comparing it to the libraries listed below
Sorting:
- OSSEM Modular☆27Jun 29, 2020Updated 5 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated last year
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆129Apr 3, 2025Updated 11 months ago
- An ELK environment containing interesting security datasets.☆136May 11, 2020Updated 5 years ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆791Mar 14, 2026Updated last week
- Serverless honeytoken 🕵🏻♂️☆81Jan 10, 2023Updated 3 years ago
- ☆19Oct 23, 2020Updated 5 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆50Sep 1, 2023Updated 2 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆91Dec 8, 2022Updated 3 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆115Mar 26, 2023Updated 2 years ago
- Manticore Adversary Emulation Cli☆47Aug 4, 2020Updated 5 years ago
- ☆34Aug 8, 2023Updated 2 years ago
- Anything Sysmon related from the MSTIC R&D team☆156Jun 8, 2024Updated last year
- evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.☆158Nov 30, 2021Updated 4 years ago
- Threat Alert Logic Repository☆93Feb 7, 2019Updated 7 years ago
- Active Directory Purple Team Playbook☆116May 8, 2023Updated 2 years ago
- Threat Hunting & Incident Investigation with Osquery☆216Mar 30, 2022Updated 3 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Mar 23, 2020Updated 5 years ago
- ☆28Mar 29, 2022Updated 3 years ago
- ☆17Oct 26, 2018Updated 7 years ago
- ☆12Mar 24, 2018Updated 7 years ago
- Sys Mon! Why yu nuh logging dat?☆12Dec 10, 2018Updated 7 years ago
- A set of tools, procedures, and playbooks for performing bug bounties☆17Dec 2, 2018Updated 7 years ago
- ☆15Jul 20, 2022Updated 3 years ago
- PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monit…☆843Feb 23, 2026Updated 3 weeks ago
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 3 years ago
- Silencing Sysmon via driver unload☆236Oct 13, 2022Updated 3 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Feb 1, 2021Updated 5 years ago
- Proof of concept - Covert Channel using Windows Filtering Platform (C#)☆21Aug 29, 2021Updated 4 years ago
- Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana☆10Aug 17, 2018Updated 7 years ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago
- ☆16May 15, 2021Updated 4 years ago
- Incident Response Playbooks☆15Jun 10, 2019Updated 6 years ago
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆345Sep 1, 2021Updated 4 years ago
- ☆39Jul 29, 2021Updated 4 years ago
- Elemental - An ATT&CK Threat Library☆318Dec 8, 2022Updated 3 years ago
- Pushes Sysmon Configs☆90Jun 11, 2021Updated 4 years ago
- Detection Ideas & Rules repository.☆178Sep 10, 2021Updated 4 years ago