Alternatives and similar repositories for pySigma-backend-loki:

Users that are interested in pySigma-backend-loki are comparing it to the libraries listed below

• WithSecureLabs / IceKube
  ☆175Updated 4 months ago
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆202Updated last month
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆71Updated last week
• r0binak / MTKPI
  🧰 Multi Tool Kubernetes Pentest Image
  ☆229Updated 7 months ago
• abdullahgarcia / kubernetes-for-soc
  kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…
  ☆53Updated last year
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆283Updated 10 months ago
• antitree / seccomp-diff
  ☆69Updated 2 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆79Updated 2 months ago
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆151Updated this week
• runreveal / sigmalite
  ☆42Updated 2 weeks ago
• falcosecurity / rules
  Falco rule repository
  ☆114Updated last week
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆376Updated last year
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆754Updated 2 weeks ago
• cea-sec / openwec
  An implementation of a Windows Event Collector server running on GNU/Linux.
  ☆70Updated last week
• CloudDefenseAI / falco_extended_rules
  Curating Falco rules with MITRE ATT&CK Matrix
  ☆78Updated last year
• edera-dev / am-i-isolated
  Validate the isolation posture of your container environment.
  ☆256Updated last week
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated last year
• DataDog / grimoire
  Generate datasets of cloud audit logs for common attacks
  ☆208Updated 7 months ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆273Updated last month
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆137Updated 10 months ago
• opensearch-project / security-analytics
  Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…
  ☆79Updated last week
• NUKIB / misp
  Docker image for MISP
  ☆123Updated this week
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆72Updated 5 months ago
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆69Updated 10 months ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆328Updated last year
• SygniaLabs / Mirage
  ☆72Updated last week
• OWASP / KubeLight
  OWASP Kubernetes security and compliance tool [WIP]
  ☆106Updated last year
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆81Updated last year
• UncoderIO / Roota
  Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …
  ☆125Updated 8 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆91Updated last year