how to strangle threats
☆57Jul 14, 2026Updated this week
Alternatives and similar repositories for detection-chokepoints
Users that are interested in detection-chokepoints are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Autonomous, read-only endpoint investigation via MCP. Ask a question about your fleet, get a narrative answer with containment recommenda…☆22Jul 6, 2026Updated last week
- Helping defenders learn and validate npm supply-chain detections with safe atomic tests.☆34Oct 30, 2025Updated 8 months ago
- DriverSentinel is a security tool developed in Go that detects malicious and vulnerable drivers on Windows systems by comparing them agai…☆36May 2, 2026Updated 2 months ago
- Generate realistic synthetic security logs for cybersecurity threat hunting training and research☆189Updated this week
- A schema-aware dataset and Claude AI skill for Microsoft Defender XDR Advanced Hunting.☆36May 6, 2026Updated 2 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- DevSecOps for the AI-era CI/CD pipeline. Catches the bugs your AI coding assistant introduces — before they reach production.☆20Updated this week
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools …☆173Jul 3, 2026Updated last week
- MCP to help Defenders Detection Engineer Harder and Smarter☆462Jun 16, 2026Updated last month
- Run TTPs, with AI!☆140Feb 23, 2026Updated 4 months ago
- Detection tells you a key is real; geiger tells you whether it's dangerous.☆34Jul 7, 2026Updated last week
- ☆24Jul 9, 2026Updated last week
- Public repository for Red Canary Research☆38Oct 29, 2020Updated 5 years ago
- User-mode ETW interception and telemetry manipulation lab for Windows security research.☆42Jun 15, 2026Updated last month
- A public repository of quality research on cyber attack techniques. This is the backend for the Technique Research Report (TRR) Library.☆28Jul 7, 2026Updated last week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Active Directory Attack Architecture Map Comprehensive Pentest Reference — From Recon to Domain Dominance☆29Feb 17, 2026Updated 4 months ago
- ⚡ AI-powered cybersecurity CLI tool for Kali Linux | Ethical hacking | Penetration testing | Bug bounty☆38May 20, 2026Updated last month
- Open-source, self-hosted OSINT investigation platform: turn documents into a live, investigated entity graph. Autonomous agent, graph ana…☆49Jun 15, 2026Updated last month
- Cyber Threat Defense World Modeling☆25May 13, 2026Updated 2 months ago
- How can you track the hunting techniques you come up with?☆13Sep 3, 2017Updated 8 years ago
- The standard Go net.Conn interface using Azure Storage services as the transport layer.☆32Mar 19, 2026Updated 3 months ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆329Updated this week
- Code canaries to quickly triage hallucinated ('slop') vulnerability reports☆95May 20, 2026Updated last month
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Local forensic scanner that extracts credentials from AI tool conversation history. For authorized red team and DLP use only.☆56Updated this week
- ☆30Feb 12, 2026Updated 5 months ago
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆28Jul 4, 2024Updated 2 years ago
- Cross-platform incident response toolkit. 28 pre-built use cases in a single zero-install binary: triage, threat hunting, memory forensic…☆150Jul 6, 2026Updated last week
- Creating attacks paths across management and data planes☆64Jun 1, 2026Updated last month
- Inline proxy for software package registries to provide observability and policy controls to installs.☆49Jun 5, 2026Updated last month
- ATHF is a framework for agentic threat hunting - building systems that can remember, learn, and act with increasing autonomy.☆331Updated this week
- OpenGraph Collector for Tailscale☆43Jul 9, 2026Updated last week
- Aether is a Windows memory-forensics and threat hunting tool that scans live process memory for malicious pattern, detect injection techn…☆52Jul 5, 2026Updated last week
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Official, curated detection content (Sigma, YARA, IOC packs) for the Rustinel endpoint detection engine.☆21Updated this week
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆61Mar 2, 2026Updated 4 months ago
- Windows kernel driver exploitation knowledge base — 28 case studies organized by driver type, grounded in real CVEs with build numbers an…☆17Mar 26, 2026Updated 3 months ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆10Apr 15, 2021Updated 5 years ago
- Living off the land Data Exfiltration methods☆60May 9, 2026Updated 2 months ago
- ☆61Dec 10, 2025Updated 7 months ago
- A collection of art inspired by the world of cybersecurity and hacking culture.☆43May 14, 2025Updated last year