DataDog/cloud-siem-aws-threat-emulation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DataDog/cloud-siem-aws-threat-emulation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DataDog/cloud-siem-aws-threat-emulation)

Close

DataDog / cloud-siem-aws-threat-emulationView on GitHubMore

• External links
• Readme badge

A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.

☆20Jul 24, 2023Updated 2 years ago

Alternatives and similar repositories for cloud-siem-aws-threat-emulation

Users that are interested in cloud-siem-aws-threat-emulation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• aws-ia / terraform-aws-guardduty

  View on GitHub
  Configure and deploy AWS GuardDuty.
  ☆12Sep 9, 2025Updated 6 months ago
• shellcromancer / audit-log-wall-of-shame

  View on GitHub
  Audit log wall of shame.
  ☆42Aug 20, 2025Updated 7 months ago
• threat-punter / security-publications

  View on GitHub
  Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…
  ☆28Dec 17, 2025Updated 3 months ago
• threat-punter / detection-as-code-example

  View on GitHub
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆31Jul 27, 2023Updated 2 years ago
• carlospolop / aws-Perms2ManagedPolicies

  View on GitHub
  ☆14Jul 21, 2024Updated last year
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• invictus-ir / aws-cheatsheet

  View on GitHub
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆80Jan 6, 2026Updated 2 months ago
• PacktPublishing / Automating-Security-Detection-Engineering

  View on GitHub
  Automating Security Detection Engineering, published by Packt
  ☆67Oct 12, 2024Updated last year
• daniellowrie / pwner

  View on GitHub
  Just a quick and dirty tool I created to automate some of my standard recon/enumeration activities when doing CTFs
  ☆13Mar 10, 2021Updated 5 years ago
• avishayil / cdk-goat

  View on GitHub
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆49Dec 29, 2023Updated 2 years ago
• anshumanbh / cyber-safari

  View on GitHub
  A fun POC that is built to understand AI security agents.
  ☆34Oct 30, 2025Updated 4 months ago
• sefcom / dbling

  View on GitHub
  dbling: The Chrome OS Forensic Toolset
  ☆13Oct 27, 2020Updated 5 years ago
• chronicle / cli

  View on GitHub
  A CLI tool for managing Chronicle user workflows
  ☆18Sep 24, 2025Updated 6 months ago
• wv8672 / AWS-Linux-Mem-Dump

  View on GitHub
  A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…
  ☆12Jul 15, 2020Updated 5 years ago
• dogoncouch / siemstress

  View on GitHub
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆39Mar 24, 2018Updated 8 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• XMCyber / XMGoat

  View on GitHub
  ☆176Apr 22, 2023Updated 2 years ago
• DataDog / vulnerable-java-application

  View on GitHub
  This repository contains a sample Java application vulnerable to command injection and server-side request forgery (SSRF).
  ☆21Mar 17, 2026Updated last week
• Cybr-Inc / CloudSec

  View on GitHub
  Public repository of all things cloud security.
  ☆48Sep 20, 2024Updated last year
• 3ndG4me / AgentSmith

  View on GitHub
  Golang C2 Agent PoC utilizing web and social media paltforms to issue command and control and pasting results to PasteBin
  ☆17Apr 23, 2020Updated 5 years ago
• davidljohnson / SigGen

  View on GitHub
  ☆20May 5, 2024Updated last year
• sbasu7241 / AWS-Threat-Simulation-and-Detection

  View on GitHub
  Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
  ☆307Jan 6, 2023Updated 3 years ago
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆339Mar 17, 2026Updated last week
• MichalMotylinski / DiscFor-Discord-Artefact-Extraction-Tool

  View on GitHub
  Digital Artefact Extraction Tool for Discord Application
  ☆12Apr 13, 2023Updated 2 years ago
• RaduLupan / aws-security-specialty-study-guide

  View on GitHub
  Free AWS Security Specialty (SCS-C02) study guide with interactive quizzes
  ☆27Mar 15, 2026Updated last week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• invictus-ir / Sigma-AWS

  View on GitHub
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Jul 12, 2023Updated 2 years ago
• truffle-hog / truffle-hog

  View on GitHub
  A network analysis tool that works together with snort to visually represent a PROFINET network graph.
  ☆17May 17, 2016Updated 9 years ago
• Algbra-Labs-OSS / Chronicle

  View on GitHub
  ☆65May 21, 2024Updated last year
• nsiow / yams

  View on GitHub
  yams is a Go library, server, and CLI providing foundational capabilities to simulate access for AWS IAM policies
  ☆35Feb 26, 2026Updated last month
• PaloAltoNetworks / pan-mcp-relay

  View on GitHub
  Palo Alto Networks AI Runtime Security Model Context Protocol (MCP) Relay Server
  ☆32Jan 27, 2026Updated 2 months ago
• PaperMtn / slack-watchman-enterprise-grid

  View on GitHub
  Monitoring your Slack Enterprise Grid for sensitive information
  ☆22Apr 15, 2023Updated 2 years ago
• simnalamburt / elb-log-parser

  View on GitHub
  Simple AWS ELB log parser which parses Classic LB and ALB logs into JSONs
  ☆18May 2, 2025Updated 10 months ago
• aws-samples / amazon-guardduty-for-aws-organizations-with-terraform

  View on GitHub
  Using Terraform to enable Amazon GuardDuty for accounts in AWS Organizations.
  ☆67Nov 7, 2024Updated last year
• aws-samples / generative-ai-to-build-a-devsecops-chatbot

  View on GitHub
  ☆13Nov 5, 2024Updated last year
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• arobinsongit / ICS-Petya

  View on GitHub
  The purpose of this repository is to provide a collaboration space for working on Petya/NoPetya tools specific to ICS
  ☆18Jun 30, 2017Updated 8 years ago
• adithyan-ak / Slacksploit

  View on GitHub
  A forensic analysis framework for enumerating slack artifacts residing in the Operating system.
  ☆18Sep 23, 2025Updated 6 months ago
• HillsyCyberSec / CheatSheet

  View on GitHub
  ☆10Aug 9, 2024Updated last year
• in28minutes / in28minutes

  View on GitHub
  ☆10Sep 10, 2024Updated last year
• huntoai / phishing-ai-agent

  View on GitHub
  Red-Team - AI Agent to Phish Employees based on Social Intelligence.
  ☆24Dec 28, 2025Updated 2 months ago
• anvilogic-forge / armory

  View on GitHub
  Anvilogic Forge
  ☆116Sep 18, 2025Updated 6 months ago
• fishinabarrel / fishinabarrel.github.io

  View on GitHub
  Security research organization dedicated to finding low hanging, critical, vulnerabilities.
  ☆15May 12, 2022Updated 3 years ago