☆120May 26, 2025Updated 9 months ago
Alternatives and similar repositories for DetectIQ
Users that are interested in DetectIQ are comparing it to the libraries listed below
Sorting:
- Mapping of open-source detection rules and atomic tests.☆201Feb 16, 2026Updated last week
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆92Nov 3, 2025Updated 3 months ago
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆225Sep 4, 2024Updated last year
- DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…☆37Aug 8, 2025Updated 6 months ago
- yara detection rules for hunting with the threathunting-keywords project☆157May 11, 2025Updated 9 months ago
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆725Feb 14, 2026Updated last week
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 6 months ago
- ☆34May 24, 2023Updated 2 years ago
- A home for detection content developed by the delivr.to team☆72Aug 10, 2025Updated 6 months ago
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,205Dec 29, 2025Updated 2 months ago
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆19May 20, 2025Updated 9 months ago
- Living off the False Positive!☆41Jan 31, 2025Updated last year
- An opensource sigma conversion tool built using pysigma☆160Feb 9, 2026Updated 2 weeks ago
- ☆27Feb 3, 2026Updated 3 weeks ago
- This project aims to fine-tune a pre-trained LLM using CTI-specific data and evaluate its performance with CTIBench, a benchmark designed…☆17Sep 5, 2024Updated last year
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Jun 16, 2025Updated 8 months ago
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆205Nov 25, 2025Updated 3 months ago
- This is a collection of threat detection rules / rules engines that I have come across.☆296May 5, 2024Updated last year
- SOAPI - The OpenAPI Documentation Scanner☆39Feb 17, 2025Updated last year
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆127Apr 6, 2024Updated last year
- Elastic Security Labs' malware analysis and reverse engineering library☆51Feb 13, 2026Updated 2 weeks ago
- Simple and efficient file shredding☆14Sep 23, 2019Updated 6 years ago
- Elyzer is an email header analyzer, written in python, capable of detecting potential spoofing attempts.☆47Dec 18, 2024Updated last year
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆323Oct 12, 2025Updated 4 months ago
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,927Jan 20, 2026Updated last month
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆302Feb 21, 2026Updated last week
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆115Jan 18, 2026Updated last month
- ☆19Jul 21, 2022Updated 3 years ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆174Updated this week
- A repository of my own Sigma detection rules.☆163Nov 25, 2025Updated 3 months ago
- ☆34Aug 8, 2023Updated 2 years ago
- Find potential DLL Sideloads on your windows computer☆219Jan 12, 2025Updated last year
- A fun POC that is built to understand AI security agents.☆34Oct 30, 2025Updated 3 months ago
- HoneyAgents is a PoC demo of an AI-driven system that combines honeypots with autonomous AI agents to detect and mitigate cyber threats. …☆59Jan 5, 2024Updated 2 years ago
- Digital forensic analysis tool that provides a user-friendly interface for investigating disk images.☆206Nov 12, 2025Updated 3 months ago
- AIL framework - Analysis Information Leak framework☆884Updated this week
- A repository to share publicly available Velociraptor detection content☆196Updated this week