☆77Feb 19, 2026Updated last month
Alternatives and similar repositories for Detection-Engineering-Framework
Users that are interested in Detection-Engineering-Framework are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An open-source computer forensics tool that can display summary as the result of Windows Event Log analysis based on the chosen function(…☆11Feb 2, 2023Updated 3 years ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆117Oct 29, 2024Updated last year
- Perform file-based malware scan on your on-prem servers with AWS☆14Oct 31, 2023Updated 2 years ago
- Cyber threat intelligence tool suite.☆42Apr 3, 2025Updated 11 months ago
- SigmaHQ pySigma CrowdStrike processing pipeline☆28Nov 30, 2025Updated 3 months ago
- ☆11Jun 12, 2023Updated 2 years ago
- Decoupled AI copilot for pentesting & CTFs. Sidecar tails your shell history, parses tool outputs, grounds suggestions in your notes, and…☆13Nov 21, 2025Updated 4 months ago
- Templates for Cribl Stream Collectors☆57Mar 4, 2026Updated 2 weeks ago
- This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.☆47Feb 27, 2026Updated 3 weeks ago
- ☆16Dec 30, 2023Updated 2 years ago
- Malware analysis using Naive Bayes ML classfier☆11Sep 9, 2019Updated 6 years ago
- Network scanning tool designed to detect and report changes in open ports and services over time☆13Oct 16, 2025Updated 5 months ago
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- Incident Response automation scripts☆16Sep 5, 2025Updated 6 months ago
- ☆103Nov 21, 2025Updated 4 months ago
- My timewarrior taskwarrior integration scripts☆17Mar 29, 2017Updated 8 years ago
- ☆46Nov 7, 2024Updated last year
- Manage and maintain Defender XDR custom collection configuration☆34Nov 19, 2025Updated 4 months ago
- Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.☆10Apr 25, 2025Updated 10 months ago
- Some resources to facilitate my blog on auditd for security monitoring☆13Mar 23, 2023Updated 3 years ago
- Bot per leggere i livelli idrometrici dei fiumi dell'Emilia Romagna riportati da allertameteo.regione.emilia-romagna.it.☆12Updated this week
- Using MCP is fun with Cyberbro!☆19Jan 27, 2026Updated last month
- Behavorial analysis of malware using machine learning☆16Mar 13, 2018Updated 8 years ago
- ☆11Oct 19, 2018Updated 7 years ago
- Convert Sigma rules to LogRhythm searches☆23Feb 27, 2022Updated 4 years ago
- This contains the contents needed to deploy a home lab in VirtualBox.☆18Jul 6, 2020Updated 5 years ago
- Threat Modeling with ATT&CK defines how to integreate MITRE ATT&CK® into your organization’s existing threat modeling methodology.☆12May 28, 2025Updated 9 months ago
- You’ve hardened your servers, locked down your website and are ready to take on the internet. But all your hard work was in vain, because…☆15Mar 6, 2017Updated 9 years ago
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Mar 13, 2026Updated last week
- Understanding the operation and limitations of Sysmon's events☆23Sep 15, 2022Updated 3 years ago
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- Automatically updated lists of Tor Relays.☆19Updated this week
- Visualize Microsoft Defender XDR process trees and security events☆32Aug 24, 2025Updated 6 months ago
- SLIce Processing is LISP for golang☆28Updated this week
- Toolset to analyze disks encrypted with McAFee FDE technology☆19Mar 11, 2021Updated 5 years ago
- Converts an exported notion archive to a logseq format☆16Jan 9, 2024Updated 2 years ago
- Displays JSON files in a flat format.☆20Dec 8, 2022Updated 3 years ago
- Splunk Terraform Provider to manage config resources for Splunk Cloud Platform☆22Mar 5, 2026Updated 2 weeks ago
- ☆29Aug 21, 2024Updated last year