AppOmni-Labs / event-maturity-matrix

Related projects ⓘ

Alternatives and complementary repositories for event-maturity-matrix

• Permiso-io-tools / azure-activity-log-axe
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆22Updated 2 months ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆27Updated last year
• wiz-sec-public / wiz-research-iocs
  ☆33Updated last week
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆27Updated last month
• Algbra-Labs-OSS / Chronicle
  ☆66Updated 6 months ago
• invictus-ir / Sigma-AWS
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆25Updated last year
• DarwinSec / DEFCON-KQL-KUNG-FU-22
  ☆18Updated 2 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆20Updated 2 years ago
• SecurityRiskAdvisors / ATTiRe
  Attack Tool Timing and Reporting - Structured Attack Logging Format
  ☆21Updated 2 years ago
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆12Updated 3 months ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆17Updated 3 years ago
• improsec / 2Cloudz
  ☆22Updated 2 years ago
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated 5 months ago
• piercing-index / cloud-vulnerabilities
  ☆37Updated 7 months ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆48Updated 10 months ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆30Updated 2 years ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆26Updated last year
• the2dl / SSDT
  Stupid Simple Detection Testing
  ☆11Updated 8 months ago
• FalconForceTeam / KQLAnalyzer
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆31Updated 6 months ago
• mattreduce / cti-self-study
  Track progress and keep notes while working through likethecoins' CTI Self Study Plan
  ☆28Updated 2 years ago
• lacework-dev / whalehoney_PUBLIC
  Public release of Whalehoney Honeypot
  ☆29Updated 2 years ago
• vz-risk / flow
  Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)
  ☆43Updated 2 years ago
• QueenSquishy / Zombie
  General Content
  ☆20Updated 4 months ago
• redcanaryco / ansible-atomic-red-team
  This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam
  ☆24Updated 4 months ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆46Updated 11 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆27Updated last month
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 2 years ago
• haidermdost / Threat-Detection-Maturity-Framework
  ☆17Updated 3 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆13Updated 8 months ago