DataDog/cloud-siem-aws-threat-emulation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

DataDog/cloud-siem-aws-threat-emulation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/DataDog/cloud-siem-aws-threat-emulation)

Close

DataDog / cloud-siem-aws-threat-emulationView on GitHubMore

• External links
• Readme badge

A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.

☆20Jul 24, 2023Updated 2 years ago

Alternatives and similar repositories for cloud-siem-aws-threat-emulation

Users that are interested in cloud-siem-aws-threat-emulation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• shellcromancer / audit-log-wall-of-shame

  View on GitHub
  Audit log wall of shame.
  ☆42Aug 20, 2025Updated 7 months ago
• threat-punter / security-publications

  View on GitHub
  Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…
  ☆28Dec 17, 2025Updated 3 months ago
• threat-punter / detection-as-code-example

  View on GitHub
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆31Jul 27, 2023Updated 2 years ago
• carlospolop / aws-Perms2ManagedPolicies

  View on GitHub
  ☆14Jul 21, 2024Updated last year
• PacktPublishing / Automating-Security-Detection-Engineering

  View on GitHub
  Automating Security Detection Engineering, published by Packt
  ☆67Oct 12, 2024Updated last year
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• avishayil / cdk-goat

  View on GitHub
  Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure
  ☆49Dec 29, 2023Updated 2 years ago
• clayball / nector

  View on GitHub
  A SIEM inspired by HECTOR, built on Django.
  ☆27Apr 16, 2019Updated 7 years ago
• groorj / aws-ip-finder

  View on GitHub
  Returns a list of all Public IP addresses being used by your AWS account. You can configure which regions you want to query.
  ☆14Jun 7, 2020Updated 5 years ago
• anshumanbh / cyber-safari

  View on GitHub
  A fun POC that is built to understand AI security agents.
  ☆34Oct 30, 2025Updated 5 months ago
• daycyberwox / Cybersecurity-HomeLab

  View on GitHub
  ☆13May 9, 2022Updated 3 years ago
• sefcom / dbling

  View on GitHub
  dbling: The Chrome OS Forensic Toolset
  ☆13Oct 27, 2020Updated 5 years ago
• chronicle / cli

  View on GitHub
  A CLI tool for managing Chronicle user workflows
  ☆18Sep 24, 2025Updated 6 months ago
• dogoncouch / siemstress

  View on GitHub
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆39Mar 24, 2018Updated 8 years ago
• XMCyber / XMGoat

  View on GitHub
  ☆178Apr 22, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• DataDog / vulnerable-java-application

  View on GitHub
  This repository contains a sample Java application vulnerable to command injection and server-side request forgery (SSRF).
  ☆22Mar 17, 2026Updated 3 weeks ago
• Cybr-Inc / CloudSec

  View on GitHub
  Public repository of all things cloud security.
  ☆48Sep 20, 2024Updated last year
• 3ndG4me / AgentSmith

  View on GitHub
  Golang C2 Agent PoC utilizing web and social media paltforms to issue command and control and pasting results to PasteBin
  ☆17Apr 23, 2020Updated 5 years ago
• redskycyber / Cloud-Security

  View on GitHub
  This Repo serves as a collection of shared security and penetration testing resources for the cloud.
  ☆296Jul 21, 2024Updated last year
• davidljohnson / SigGen

  View on GitHub
  ☆20May 5, 2024Updated last year
• sbasu7241 / AWS-Threat-Simulation-and-Detection

  View on GitHub
  Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic
  ☆307Jan 6, 2023Updated 3 years ago
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆341Updated this week
• MichalMotylinski / DiscFor-Discord-Artefact-Extraction-Tool

  View on GitHub
  Digital Artefact Extraction Tool for Discord Application
  ☆12Apr 13, 2023Updated 3 years ago
• invictus-ir / Sigma-AWS

  View on GitHub
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Jul 12, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• cisco-foundation-ai / PEAK-Assistant

  View on GitHub
  An AI-backed threat hunting assistant that aligns to the PEAK framework.
  ☆39Updated this week
• truffle-hog / truffle-hog

  View on GitHub
  A network analysis tool that works together with snort to visually represent a PROFINET network graph.
  ☆17May 17, 2016Updated 9 years ago
• Algbra-Labs-OSS / Chronicle

  View on GitHub
  ☆65May 21, 2024Updated last year
• nsiow / yams

  View on GitHub
  yams is a Go library, server, and CLI providing foundational capabilities to simulate access for AWS IAM policies
  ☆35Feb 26, 2026Updated last month
• egycondor / Blue-DVWA-Splunk

  View on GitHub
  ☆11Jun 4, 2025Updated 10 months ago
• PaperMtn / slack-watchman-enterprise-grid

  View on GitHub
  Monitoring your Slack Enterprise Grid for sensitive information
  ☆22Apr 15, 2023Updated 3 years ago
• aws-samples / amazon-guardduty-for-aws-organizations-with-terraform

  View on GitHub
  Using Terraform to enable Amazon GuardDuty for accounts in AWS Organizations.
  ☆67Nov 7, 2024Updated last year
• aws-samples / generative-ai-to-build-a-devsecops-chatbot

  View on GitHub
  ☆13Nov 5, 2024Updated last year
• arobinsongit / ICS-Petya

  View on GitHub
  The purpose of this repository is to provide a collaboration space for working on Petya/NoPetya tools specific to ICS
  ☆18Jun 30, 2017Updated 8 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• adithyan-ak / Slacksploit

  View on GitHub
  A forensic analysis framework for enumerating slack artifacts residing in the Operating system.
  ☆18Sep 23, 2025Updated 6 months ago
• HillsyCyberSec / CheatSheet

  View on GitHub
  ☆10Aug 9, 2024Updated last year
• chainguard-dev / github-audit-alerter

  View on GitHub
  Slack alert bot for matching Github Audit Events
  ☆10Nov 12, 2024Updated last year
• JohnHammond / pam_sneaky

  View on GitHub
  A silly PAM module to allow authentication as any user with a single password.
  ☆13Mar 27, 2020Updated 6 years ago
• huntoai / phishing-ai-agent

  View on GitHub
  Red-Team - AI Agent to Phish Employees based on Social Intelligence.
  ☆25Dec 28, 2025Updated 3 months ago
• in28minutes / in28minutes

  View on GitHub
  ☆10Sep 10, 2024Updated last year
• anvilogic-forge / armory

  View on GitHub
  Anvilogic Forge
  ☆117Mar 31, 2026Updated 2 weeks ago