GoogleCloudPlatform / security-analytics
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
☆338Updated 10 months ago
Alternatives and similar repositories for security-analytics:
Users that are interested in security-analytics are comparing it to the libraries listed below
- Take automated actions against threats and vulnerabilities.☆213Updated last year
- Best practice example for secure and compliant Google Cloud Platform infrastructure☆104Updated 2 years ago
- Collection of example YARA-L rules for use within Google Security Operations☆379Updated this week
- GCP CIS 1.1.0 Benchmark InSpec Profile☆130Updated 8 months ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆384Updated last year
- Built-in Panther detection rules and policies☆374Updated last week
- Dorothy is a tool to test security monitoring and detection for Okta environments☆181Updated 8 months ago
- ☆370Updated last year
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆339Updated 3 weeks ago
- Python library to carry out DFIR analysis on the Cloud☆476Updated 3 weeks ago
- A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat …☆186Updated 7 months ago
- ☆386Updated last year
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.☆330Updated last year
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆276Updated last year
- A curated list of resources about detecting threats and defending Kubernetes systems.☆376Updated last year
- Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.☆29Updated last year
- Open Cloud Security Posture Management Engine☆339Updated 3 years ago
- The SOCless automation framework☆139Updated 2 months ago
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆114Updated last week
- JIT Groups is an open source application that lets you implement secure, self-service access management for Google Cloud using groups.☆265Updated this week
- A small set of scripts to summarize AWS Security Groups, and generate visualizations of the rules.☆62Updated 4 years ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆72Updated 11 months ago
- Python samples and utilities for Chronicle APIs☆81Updated 3 weeks ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆491Updated last year
- ☆366Updated last year
- A library of constraint templates and sample constraints for Constraint Framework tools☆228Updated 10 months ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆228Updated last month
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆164Updated 11 months ago
- A collection of projects supporting AWS Integration☆155Updated 3 weeks ago
- A collection of GCP IAM privilege escalation methods documented by the Rhino Security Labs team.☆380Updated last year