A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.
☆20Jul 24, 2023Updated 2 years ago
Alternatives and similar repositories for cloud-siem-aws-threat-emulation
Users that are interested in cloud-siem-aws-threat-emulation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Configure and deploy AWS GuardDuty.☆12Sep 9, 2025Updated 7 months ago
- Audit log wall of shame.☆42Aug 20, 2025Updated 8 months ago
- Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…☆28Dec 17, 2025Updated 4 months ago
- A POC to implement Detection-as-Code with Terraform and Sumo Logic.☆31Jul 27, 2023Updated 2 years ago
- ☆14Jul 21, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆83Jan 6, 2026Updated 4 months ago
- Just a quick and dirty tool I created to automate some of my standard recon/enumeration activities when doing CTFs☆13Mar 10, 2021Updated 5 years ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆49Dec 29, 2023Updated 2 years ago
- Returns a list of all Public IP addresses being used by your AWS account. You can configure which regions you want to query.☆14Jun 7, 2020Updated 5 years ago
- A fun POC that is built to understand AI security agents.☆34Oct 30, 2025Updated 6 months ago
- ☆13May 9, 2022Updated 3 years ago
- A CLI tool for managing Chronicle user workflows☆18Apr 13, 2026Updated 3 weeks ago
- A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…☆12Jul 15, 2020Updated 5 years ago
- This repository contains a sample Java application vulnerable to command injection and server-side request forgery (SSRF).☆22Apr 23, 2026Updated 2 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Public repository of all things cloud security.☆47Sep 20, 2024Updated last year
- Golang C2 Agent PoC utilizing web and social media paltforms to issue command and control and pasting results to PasteBin☆17Apr 23, 2020Updated 6 years ago
- ☆20May 5, 2024Updated 2 years ago
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆307Jan 6, 2023Updated 3 years ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆341Apr 26, 2026Updated last week
- Digital Artefact Extraction Tool for Discord Application☆12Apr 13, 2023Updated 3 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Jul 12, 2023Updated 2 years ago
- A network analysis tool that works together with snort to visually represent a PROFINET network graph.☆17May 17, 2016Updated 9 years ago
- Free AWS Security Specialty (SCS-C02) study guide with interactive quizzes☆38Mar 15, 2026Updated last month
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Palo Alto Networks AI Runtime Security Model Context Protocol (MCP) Relay Server☆33Jan 27, 2026Updated 3 months ago
- yams is a Go library, server, and CLI providing foundational capabilities to simulate access for AWS IAM policies☆35Apr 29, 2026Updated last week
- Monitoring your Slack Enterprise Grid for sensitive information☆22Apr 15, 2023Updated 3 years ago
- A high interaction virtual ICS honeypot that simulates a PLC and provides physical process simulation.☆16Sep 23, 2024Updated last year
- Simple AWS ELB log parser which parses Classic LB and ALB logs into JSONs☆18May 2, 2025Updated last year
- Using Terraform to enable Amazon GuardDuty for accounts in AWS Organizations.☆67Nov 7, 2024Updated last year
- ☆13Nov 5, 2024Updated last year
- The purpose of this repository is to provide a collaboration space for working on Petya/NoPetya tools specific to ICS☆18Jun 30, 2017Updated 8 years ago
- ☆10Aug 9, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Red-Team - AI Agent to Phish Employees based on Social Intelligence.☆25Dec 28, 2025Updated 4 months ago
- ☆10Sep 10, 2024Updated last year
- Security research organization dedicated to finding low hanging, critical, vulnerabilities.☆15May 12, 2022Updated 3 years ago
- ☆12Oct 17, 2023Updated 2 years ago
- Integrating Amazon API Gateway private endpoints with on-premises networks☆12Jul 9, 2021Updated 4 years ago
- A dataset with CloudTrail events from an attack simulation using Stratus.☆25Jul 12, 2023Updated 2 years ago
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆18Apr 30, 2025Updated last year