PacktPublishing/Automating-Security-Detection-Engineering external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PacktPublishing/Automating-Security-Detection-Engineering

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PacktPublishing/Automating-Security-Detection-Engineering)

Close

PacktPublishing / Automating-Security-Detection-EngineeringView on GitHubMore

• External links
• Readme badge

Automating Security Detection Engineering, published by Packt

☆67Oct 12, 2024Updated last year

Alternatives and similar repositories for Automating-Security-Detection-Engineering

Users that are interested in Automating-Security-Detection-Engineering are comparing it to the libraries listed below

• PacktPublishing / Practical-Threat-Detection-Engineering

  View on GitHub
  Practical Threat Detection Engineering, Published by Packt
  ☆87Mar 2, 2026Updated 2 weeks ago
• threat-punter / detection-as-code-example

  View on GitHub
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆31Jul 27, 2023Updated 2 years ago
• ItzHerbie / KQL

  View on GitHub
  Detection rules and threat hunting queries in Defender XDR and Azure Sentinel
  ☆16Mar 13, 2026Updated last week
• DataDog / cloud-siem-aws-threat-emulation

  View on GitHub
  A guide to simplify the process of evaluating Datadog's Cloud SIEM security capabilities to detect AWS threats.
  ☆20Jul 24, 2023Updated 2 years ago
• center-for-threat-informed-defense / sightings_ecosystem

  View on GitHub
  Sightings Ecosystem gives cyber defenders visibility into what adversaries actually do in the wild. With your help, we are tracking MITRE…
  ☆38May 28, 2025Updated 9 months ago
• Abjuri5t / SarlackLab

  View on GitHub
  ☆34Nov 11, 2025Updated 4 months ago
• Invoke-RE / community-malware-research

  View on GitHub
  A repository to store community malware research notes and findings.
  ☆15Feb 13, 2026Updated last month
• teslamotors / doorkeeper

  View on GitHub
  Doorkeeper is an OAuth 2 provider for Rails.
  ☆13Jan 7, 2015Updated 11 years ago
• infosecB / detection-as-code

  View on GitHub
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Mar 12, 2022Updated 4 years ago
• infosecB / awesome-detection-engineering

  View on GitHub
  Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…
  ☆1,151Dec 19, 2025Updated 3 months ago
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆290Feb 5, 2024Updated 2 years ago
• NorthfieldCreative / splunk-crowdstrike-event-queries

  View on GitHub
  ☆14Jan 2, 2025Updated last year
• center-for-threat-informed-defense / m3tid

  View on GitHub
  The Measure, Maximize, and Mature Threat-Informed Defense (M3TID) project defines what Threat-Informed Defense (TID) is and the key activ…
  ☆16Jun 25, 2025Updated 8 months ago
• sans-blue-team / sec555-mdwiki-v1

  View on GitHub
  ☆12Jan 5, 2021Updated 5 years ago
• west-wind / Threat-Hunting-With-Splunk

  View on GitHub
  Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
  ☆68Apr 29, 2024Updated last year
• alatif113 / mitre_attck_heatmap

  View on GitHub
  ☆19Dec 9, 2024Updated last year
• alexverboon / DefenderResourceHub

  View on GitHub
  Defender Resource Hub
  ☆30Feb 23, 2026Updated 3 weeks ago
• Samurai-X-13 / wifi-deauther-gui

  View on GitHub
  This is a gui interface for airmon-ng
  ☆14Mar 23, 2023Updated 2 years ago
• anvilogic-forge / armory

  View on GitHub
  Anvilogic Forge
  ☆116Sep 18, 2025Updated 6 months ago
• Ginsberg5150 / deepdarkCTI

  View on GitHub
  Collection of Cyber Threat Intelligence sources from the deep and dark web
  ☆11Sep 21, 2022Updated 3 years ago
• threat-punter / security-publications

  View on GitHub
  Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…
  ☆28Dec 17, 2025Updated 3 months ago
• ACloudGuru / content-kcna

  View on GitHub
  Will Boyd, 1124, Kubernetes and Cloud Native Associate (KCNA)
  ☆21Dec 16, 2022Updated 3 years ago
• Group-IB / pythf

  View on GitHub
  Malware detonation platform Polygon integration
  ☆10Aug 1, 2023Updated 2 years ago
• cyb3rmik3 / KQL-threat-hunting-queries

  View on GitHub
  A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…
  ☆762Aug 28, 2025Updated 6 months ago
• Neo23x0 / littlesnitch-log-exporter

  View on GitHub
  LittleSnitch Log Statistics Exporter
  ☆35Apr 16, 2023Updated 2 years ago
• SlimKQL / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Microsoft Defender, Microsoft Sentinel
  ☆841Updated this week
• CiscoCXSecurity / Detection-Engineering-Framework

  View on GitHub
  ☆96Jan 7, 2026Updated 2 months ago
• THORCollective / HEARTH

  View on GitHub
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆304Updated this week
• tsale / Threat-Intelligence-Playbooks

  View on GitHub
  High-level Threat Intelligence playbooks
  ☆20Mar 6, 2021Updated 5 years ago
• heilancoos / k8s-custom-detections

  View on GitHub
  ☆57Mar 6, 2026Updated 2 weeks ago
• AlbinoGazelle / esxi-testing-toolkit

  View on GitHub
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆82Apr 20, 2025Updated 11 months ago
• swiftbird07 / IRIS-SOAR

  View on GitHub
  🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …
  ☆15Mar 27, 2024Updated last year
• Tatsuya-hasegawa / MSTICPy_utils

  View on GitHub
  my MSTICpy practice and custom tools repository
  ☆11Apr 23, 2025Updated 10 months ago
• invictus-ir / aws-cheatsheet

  View on GitHub
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆80Jan 6, 2026Updated 2 months ago
• ail-project / ail-feeder-telegram

  View on GitHub
  External telegram feeder for AIL framework
  ☆18Jan 21, 2026Updated 2 months ago
• RustyNoob-619 / YARA

  View on GitHub
  Everything related to YARA
  ☆16Feb 19, 2026Updated last month
• Digital-Defense-Institute / triage.zip

  View on GitHub
  A preconfigured Velociraptor triage collector
  ☆76Mar 2, 2026Updated 2 weeks ago
• k-bailey / detection-engineering-maturity-matrix

  View on GitHub
  ☆99Sep 16, 2022Updated 3 years ago
• frack113 / sigma_redcanaryco

  View on GitHub
  Knowing which rule should trigger according to the redcannary test
  ☆11Nov 23, 2024Updated last year