β13May 23, 2026Updated last week
Alternatives and similar repositories for suzaku-rules
Users that are interested in suzaku-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.β16Oct 22, 2025Updated 7 months ago
- π»ββοΈ πΉ Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.β14May 22, 2024Updated 2 years ago
- β21Nov 19, 2025Updated 6 months ago
- ETW forensic tool for Volatility3 pluginβ17Nov 15, 2024Updated last year
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.β35Jul 23, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.β10Apr 3, 2022Updated 4 years ago
- A Rust library for parsing and evaluating Sigma rulesβ22Nov 26, 2025Updated 6 months ago
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365β24Oct 9, 2024Updated last year
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.β20Nov 28, 2023Updated 2 years ago
- Parser fo macOS/iOS FSEvents Logsβ46May 6, 2024Updated 2 years ago
- Suzaku (ζ±ι) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.β177May 22, 2026Updated last week
- Enumerate Location Services using CoreLocation API on macOSβ19Dec 2, 2021Updated 4 years ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.β10Apr 22, 2024Updated 2 years ago
- Living off the False Positive!β42Apr 3, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform β’ AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.β21Jul 1, 2023Updated 2 years ago
- β30Jan 13, 2026Updated 4 months ago
- β15Jul 20, 2022Updated 3 years ago
- This crate provides functions for working with IPv4 CIDRs and IPv6 CIDRs.β33Dec 26, 2025Updated 5 months ago
- A dataset with CloudTrail events from an attack simulation using Stratus.β26Jul 12, 2023Updated 2 years ago
- A companion Github repo for the book - Threat Hunting macOS by Jaron Bradleyβ21Jul 26, 2025Updated 10 months ago
- Sample evtx files to use for testing hayabusa detection rulesβ65Nov 5, 2025Updated 6 months ago
- β25Feb 13, 2021Updated 5 years ago
- ΓberDig - dig on steroidsβ16Apr 23, 2026Updated last month
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- bagel, a CLI that inventories security-relevant metadata on developer workstationsβ134May 20, 2026Updated last week
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carvingβ43Apr 23, 2020Updated 6 years ago
- Comprehensive pfSense deployment, monitoring, and security knowledge base: From basic configuration to advanced SIEM infrastructure, IDS/β¦β29Mar 29, 2026Updated 2 months ago
- Parses USB connection artifacts from offline Registry hivesβ107Feb 8, 2026Updated 3 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Clβ¦β174May 16, 2024Updated 2 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.β31Jul 12, 2023Updated 2 years ago
- macOS forensic timeline generator using the analysis result DBs of mac_aptβ94Sep 7, 2023Updated 2 years ago
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloadedβ89Apr 24, 2026Updated last month
- Sample implementation for OIDC with FastAPI and Authlib.β20Dec 1, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- CocktailParty is a data broker system based on phoenix frameworkβ23Apr 23, 2025Updated last year
- The backend server handling API requests and task managementβ64May 19, 2026Updated last week
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and securβ¦β174Mar 11, 2026Updated 2 months ago
- DFIR Timeline Analysis for macOS β SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspectβ¦β243Apr 30, 2026Updated 3 weeks ago
- Nancy - Nim fancy ANSI tablesβ56May 5, 2023Updated 3 years ago
- β23Oct 9, 2024Updated last year
- β21Mar 28, 2026Updated 2 months ago