Securonix / AutonomousThreatSweeper
Threat Hunting queries for various attacks
☆220Updated this week
Alternatives and similar repositories for AutonomousThreatSweeper:
Users that are interested in AutonomousThreatSweeper are comparing it to the libraries listed below
- Rules generated from our investigations.☆188Updated 2 months ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆329Updated this week
- Sigma rules from Joe Security☆202Updated 2 months ago
- OSSEM Detection Model☆174Updated 2 years ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆498Updated last week
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆537Updated this week
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆128Updated 10 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆267Updated this week
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆195Updated 4 years ago
- Cyber Incident Response Team Playbook Battle Cards☆363Updated 8 months ago
- Automatically created C2 Feeds☆554Updated this week
- an excel-centric approach for the MITRE ATT&CK® Tactics and Techniques☆181Updated 2 years ago
- Zeek-Formatted Threat Intelligence Feeds☆347Updated this week
- ☆512Updated 3 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆149Updated this week
- Dettectinator - The Python library to your DeTT&CT YAML files.☆107Updated this week
- The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…☆142Updated 4 months ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆199Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆146Updated last year
- ☆197Updated last year
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆125Updated 8 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆213Updated last year
- A repository of my own Sigma detection rules.☆156Updated 4 months ago
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆691Updated 3 weeks ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆136Updated this week
- Splunk code (SPL) for serious threat hunters and detection engineers.☆269Updated last year
- ☆195Updated 11 months ago
- An opensource sigma conversion tool built using pysigma☆112Updated 3 weeks ago
- Detection Ideas & Rules repository.☆178Updated 3 years ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆597Updated 6 months ago