BadSamuraiDev / awesome-security-ce
Awesome List of Enterprise Security Tools' Community Edition
☆12Updated 10 months ago
Related projects: ⓘ
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆49Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆93Updated 6 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆37Updated 4 months ago
- Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…☆47Updated last week
- Documentation site for Velociraptor☆35Updated this week
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆113Updated 9 months ago
- Repository of public reference frameworks for the DFIR community.☆105Updated last year
- Collection of Jupyter Notebooks by @fr0gger_☆139Updated 2 weeks ago
- Dictionary of CTI-related acronyms, terms, and jargon☆129Updated 9 months ago
- A tool that allows you to document and assess any security automation in your SOC☆40Updated 4 months ago
- Search a filesystem for indicators of compromise (IoC).☆66Updated 3 weeks ago
- ☆51Updated 3 years ago
- Cybersecurity Incident Response Plan☆86Updated 3 years ago
- Convert Sigma rules to LogRhythm searches☆19Updated 2 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- Notes on managing and coordinating the response to major cyber incidents☆38Updated 4 years ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆76Updated 8 months ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆55Updated 4 months ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆108Updated 3 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆40Updated this week
- A dataset containing Office 365 Unified Audit Logs for security research and detection☆41Updated 2 years ago
- SigmaHQ pySigma CrowdStrike processing pipeline☆18Updated this week
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆64Updated 6 months ago
- Automating Security Detection Engineering, published by Packt☆42Updated 3 months ago
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆62Updated last year
- Zerofox Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆36Updated 4 years ago
- The Threat Actor Profile Guide for CTI Analysts☆89Updated last year
- A curated list of KAPE-related resources☆154Updated 4 months ago
- Conference presentations☆45Updated 11 months ago
- ☆58Updated 2 years ago