Alternatives and similar repositories for facade

Users that are interested in facade are comparing it to the libraries listed below

• 0x4D31 / santamon
  Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.
  ☆102Updated 2 months ago
• NikolasBielski / Adversarial-Detection-Engineering-Framework
  A framework and taxonomy for identifying, classifying, and reasoning about detection logic bugs in SIEM, EDR, and XDR rules, with concret…
  ☆23Updated this week
• AppOmni-Labs / event-maturity-matrix
  The Event Maturity Matrix (EMM) is a comprehensive framework that provides clarity regarding the capabilities and nuances of SaaS audit l…
  ☆30Updated 7 months ago
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆50Updated 10 months ago
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated 2 years ago
• closed-systems / strangerstrings
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆52Updated 4 months ago
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆38Updated last year
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆93Updated 2 months ago
• Neuroengine-vulns / autokaker
  Automated vulnerability discovery and annotation
  ☆68Updated last year
• cisagov / parsnip
  ☆74Updated 4 months ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆61Updated 6 months ago
• n0jam / gcp-ctf-workshop
  ☆41Updated last year
• runreveal / sigmalite
  ☆51Updated last month
• Permiso-io-tools / capiche
  ☆18Updated this week
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆109Updated 4 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆32Updated last year
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated last year
• fkie-cad / bountyhunter
  A Caldera plugin for the emulation of complete, realistic cyberattack chains.
  ☆61Updated 2 months ago
• fr0gger / MCP_Security
  This is a repository to experiment with MCP for security
  ☆46Updated last year
• vz-risk / flow
  Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)
  ☆44Updated 3 years ago
• jonny-jhnson / EventSight
  AI-powered Windows Event Log analyzer that learns from your feedback. Uses Claude AI with RAG to detect suspicious activity, improve ac…
  ☆31Updated last month
• 0xAIDR / AIDR-Bastion
  A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…
  ☆94Updated 3 months ago
• offensive-actions / release-tampering-pocs
  Proof of Concepts for malicious maintainers: How to Tamper with Releases built with GitHub Actions Worfklows, presented at fwd:cloudsec E…
  ☆77Updated 4 months ago
• RITRedteam / StreetCred
  Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…
  ☆40Updated 2 years ago
• hazcod / shade
  PoC shadow SaaS and insecure credential detection system using a browser extension.
  ☆41Updated 2 months ago
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆38Updated last month
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆17Updated last year
• muchdogesec / ctibutler
  A web API for various cyber threat intelligence frameworks, including MITRE ATT&CK, CWE, ATLAS...
  ☆19Updated this week
• Permiso-io-tools / bucket-shield
  ☆14Updated 3 weeks ago
• jalacloud / mcp-cti
  Repo for experimenting and testing MCP server builds for CTI-related research.
  ☆27Updated 8 months ago