MCP to help Defenders Detection Engineer Harder and Smarter
☆431Apr 21, 2026Updated 2 weeks ago
Alternatives and similar repositories for Security-Detections-MCP
Users that are interested in Security-Detections-MCP are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Vagrant Files to create a Virtualbox VM for Malware Analysis☆13Jun 1, 2021Updated 4 years ago
- ☆12Mar 28, 2026Updated last month
- A curated collection of DFIR skills and workflows for InfoSec practitioners.☆290Apr 10, 2026Updated last month
- Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.☆111Dec 3, 2025Updated 5 months ago
- Sysmon Config Pusher - Modernized☆40Jan 7, 2026Updated 4 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- AI-VAPT is an autonomous AI-driven Vulnerability Assessment & Penetration Testing framework combining traditional VAPT with neural intell…☆93Oct 7, 2025Updated 7 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆281Dec 20, 2025Updated 4 months ago
- IP address filter by City☆12Jan 17, 2025Updated last year
- SecTor - Not-So-Secret Agents: Deploying AI to Optimize Security Operations☆39Oct 15, 2025Updated 6 months ago
- Mapping of open-source detection rules and atomic tests.☆209Feb 16, 2026Updated 2 months ago
- MISP to Sentinel integration☆80Apr 21, 2026Updated 2 weeks ago
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆812Jan 14, 2026Updated 3 months ago
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Automated security investigation tool using Microsoft MCP Servers, GitHub Copilot, Python Modules and custom copilot-instructions.☆192May 1, 2026Updated last week
- GenAI-STIX2.1-Generator is a tool that leverages Azure OpenAI capabilities to transform threat intelligence reports from unstructured web…☆24Mar 24, 2025Updated last year
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆315Updated this week
- RedAudit is a next-generation Windows forensic and security assessment framework featuring a live cyber-operations GUI built for real inv…☆35Nov 15, 2025Updated 5 months ago
- A simple tool designed to create Atomic Red Team tests with ease.☆61Apr 30, 2026Updated last week
- ☆74Apr 4, 2026Updated last month
- Open-source endpoint detection engine for Windows and Linux using ETW, eBPF, Sigma, YARA, IOCs, and ECS NDJSON alerts.☆148Updated this week
- ☆68May 13, 2022Updated 3 years ago
- VTC - Velociraptor Timeline Creator☆19May 15, 2024Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- my MSTICpy practice and custom tools repository☆11Apr 23, 2025Updated last year
- LotL RMM☆341Updated this week
- Knowledge Report Alert & Normalization Generator☆26Apr 23, 2026Updated 2 weeks ago
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 5 months ago
- Cyber Threat Intelligence☆79Dec 7, 2025Updated 5 months ago
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆144Updated this week
- Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.☆47Jan 22, 2025Updated last year
- python3 scripts to help with aws triage needs☆15Feb 11, 2022Updated 4 years ago
- Firebase Domain Front Code☆21May 4, 2021Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…☆821Apr 18, 2026Updated 3 weeks ago
- some KQL Queries for Advanced Hunting☆83Updated this week
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆16Jul 5, 2021Updated 4 years ago
- pySigma Splunk backend☆42Mar 22, 2026Updated last month
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆67Feb 22, 2026Updated 2 months ago
- Public Repo for Atomic Test Harness☆285Apr 8, 2025Updated last year
- ☆123Dec 6, 2025Updated 5 months ago