A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.
☆20Jul 24, 2023Updated 2 years ago
Alternatives and similar repositories for cloud-siem-aws-threat-emulation
Users that are interested in cloud-siem-aws-threat-emulation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Configure and deploy AWS GuardDuty.☆13Sep 9, 2025Updated 9 months ago
- Audit log wall of shame.☆42Aug 20, 2025Updated 10 months ago
- Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…☆28Dec 17, 2025Updated 6 months ago
- ☆14Jul 21, 2024Updated last year
- Automating Security Detection Engineering, published by Packt☆73Oct 12, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Just a quick and dirty tool I created to automate some of my standard recon/enumeration activities when doing CTFs☆13Mar 10, 2021Updated 5 years ago
- Vulnerable by Design AWS Cloud Development Kit (CDK) Infrastructure☆47Dec 29, 2023Updated 2 years ago
- Returns a list of all Public IP addresses being used by your AWS account. You can configure which regions you want to query.☆14Jun 7, 2020Updated 6 years ago
- A fun POC that is built to understand AI security agents.☆36Oct 30, 2025Updated 8 months ago
- dbling: The Chrome OS Forensic Toolset☆13Oct 27, 2020Updated 5 years ago
- A CLI tool for managing Chronicle user workflows☆18Apr 13, 2026Updated 2 months ago
- A Python, Boto3 script that leverages a forensic volume to attach & mount to a selected instance, run a memory dump, unmount and detach f…☆12Jul 15, 2020Updated 5 years ago
- Very basic CLI SIEM (Security Information and Event Management system).☆41Mar 24, 2018Updated 8 years ago
- ☆178Apr 22, 2023Updated 3 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Public repository of all things cloud security.☆47Sep 20, 2024Updated last year
- Golang C2 Agent PoC utilizing web and social media paltforms to issue command and control and pasting results to PasteBin☆18Apr 23, 2020Updated 6 years ago
- This Repo serves as a collection of shared security and penetration testing resources for the cloud.☆303Jul 21, 2024Updated last year
- Playing around with Stratus Red Team (Cloud Attack simulation tool) and SumoLogic☆308Jan 6, 2023Updated 3 years ago
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆344Jun 19, 2026Updated 2 weeks ago
- Digital Artefact Extraction Tool for Discord Application☆12Apr 13, 2023Updated 3 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆34Jul 12, 2023Updated 2 years ago
- An AI-backed threat hunting assistant that aligns to the PEAK framework.☆54Jun 1, 2026Updated last month
- Palo Alto Networks AI Runtime Security Model Context Protocol (MCP) Relay Server☆33Jan 27, 2026Updated 5 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- yams is a Go library, server, and CLI providing foundational capabilities to simulate access for AWS IAM policies☆36Jun 29, 2026Updated last week
- Free AWS Security Specialty (SCS-C02) study guide with interactive quizzes☆42Mar 15, 2026Updated 3 months ago
- ☆12Jun 4, 2025Updated last year
- Simple AWS ELB log parser which parses Classic LB and ALB logs into JSONs☆18May 2, 2025Updated last year
- Using Terraform to enable Amazon GuardDuty for accounts in AWS Organizations.☆68Nov 7, 2024Updated last year
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆54Apr 25, 2023Updated 3 years ago
- The purpose of this repository is to provide a collaboration space for working on Petya/NoPetya tools specific to ICS☆18Jun 30, 2017Updated 9 years ago
- A forensic analysis framework for enumerating slack artifacts residing in the Operating system.☆18Sep 23, 2025Updated 9 months ago
- Slack alert bot for matching Github Audit Events☆10Nov 12, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Red-Team - AI Agent to Phish Employees based on Social Intelligence.☆24Dec 28, 2025Updated 6 months ago
- A silly PAM module to allow authentication as any user with a single password.☆13Mar 27, 2020Updated 6 years ago
- ☆10Sep 10, 2024Updated last year
- Integrating Amazon API Gateway private endpoints with on-premises networks☆12Jul 9, 2021Updated 4 years ago
- Anvilogic Forge☆119Mar 31, 2026Updated 3 months ago
- A dataset with CloudTrail events from an attack simulation using Stratus.☆28Jul 12, 2023Updated 2 years ago
- Web app built to allow digital forensic professionals to search for the forensic tools that will parse artifacts from various apps.☆19Updated this week