infosecB / awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
☆959Updated last week
Alternatives and similar repositories for awesome-detection-engineering:
Users that are interested in awesome-detection-engineering are comparing it to the libraries listed below
- Incident Response Methodologies 2022☆1,045Updated 2 weeks ago
- Splunk Security Content☆1,403Updated this week
- A knowledge base of actionable Incident Response techniques☆636Updated 2 years ago
- SIEM Tactics, Techiques, and Procedures��☆619Updated last week
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆901Updated last year
- A repository of curated datasets from various attacks☆643Updated this week
- A concise, directive, specific, flexible, and free incident response plan template☆699Updated 11 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆612Updated 10 months ago
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,368Updated 2 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆857Updated 7 months ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆602Updated last month
- Cyber Incident Response Team Playbook Battle Cards☆374Updated 11 months ago
- Purple Team Exercise Framework☆696Updated last year
- A collection of resources for Threat Hunters☆881Updated 6 months ago
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆656Updated this week
- Awesome Security lists for SOC/CERT/CTI☆934Updated this week
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆276Updated last year
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆725Updated last month
- Detect Tactics, Techniques & Combat Threats☆2,145Updated 2 months ago
- A curated list of Awesome Threat Intelligence Blogs☆390Updated 2 months ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆665Updated 2 months ago
- A framework for developing alerting and detection strategies for incident response.☆731Updated 3 years ago
- Splunk Boss of the SOC version 3 dataset.☆331Updated 4 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,151Updated last year
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆491Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆563Updated last month
- Actionable analytics designed to combat threats☆982Updated 2 years ago
- A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.☆556Updated 2 years ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,275Updated this week
- Re-play Security Events☆1,637Updated last year