goog-cmmartin / thatsiemguyLinks
Content related to medium.com/@thatsiemguy
☆15Updated last week
Alternatives and similar repositories for thatsiemguy
Users that are interested in thatsiemguy are comparing it to the libraries listed below
Sorting:
- Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.☆31Updated 2 years ago
- ☆88Updated last month
- ☆98Updated 3 years ago
- A starter pack of resources to help you get started in Detection Engineering.☆172Updated 3 weeks ago
- Automating Security Detection Engineering, published by Packt☆62Updated 11 months ago
- ☆146Updated this week
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆284Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆81Updated last year
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated 10 months ago
- A 30-day hands-on SOC Analyst project simulating real-world cyber attacks using ELK Stack, Mythic C2, osTicket & Elastic Defend. Covers t…☆38Updated 3 months ago
- ☆15Updated 2 years ago
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆163Updated 6 months ago
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆81Updated 2 weeks ago
- Cybersecurity Incident Response Plan☆105Updated 4 years ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆264Updated 5 months ago
- Practical Threat Detection Engineering, Published by Packt☆76Updated 2 years ago
- ☆45Updated 2 years ago
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆208Updated 2 weeks ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Open Source Security Operations Center Documentation☆194Updated 2 months ago
- Anvilogic Forge☆107Updated this week
- This repository contains Community and Field contributed content for LogScale☆264Updated last month
- Creating a resource to help build and manage an Insider Threat program.☆92Updated 7 months ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆210Updated 5 years ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆98Updated last year
- Conference presentations☆59Updated last week
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Updated last year
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆253Updated 2 months ago
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆190Updated last year
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆389Updated last year