infosecB / awesome-detection-engineeringLinks
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
☆1,055Updated 2 months ago
Alternatives and similar repositories for awesome-detection-engineering
Users that are interested in awesome-detection-engineering are comparing it to the libraries listed below
Sorting:
- Incident Response Methodologies 2022☆1,069Updated 5 months ago
- A concise, directive, specific, flexible, and free incident response plan template☆732Updated last year
- A repository of curated datasets from various attacks☆678Updated this week
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆688Updated 4 months ago
- Splunk Security Content☆1,495Updated this week
- A curated list of annual cyber security reports☆629Updated this week
- A knowledge base of actionable Incident Response techniques☆649Updated 3 years ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆681Updated last month
- SIEM Tactics, Techiques, and Procedures☆663Updated last month
- Cyber Incident Response Team Playbook Battle Cards☆414Updated last year
- Awesome Security lists for SOC/CERT/CTI☆1,108Updated this week
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆494Updated last year
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆940Updated last year
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆708Updated 7 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆887Updated last year
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,501Updated last month
- GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]☆1,504Updated last year
- A curated list of Awesome Threat Intelligence Blogs☆448Updated last month
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,198Updated 3 months ago
- A python module for working with ATT&CK☆588Updated this week
- Playbooks for SOC Analysts☆592Updated 2 years ago
- Splunk Boss of the SOC version 3 dataset.☆368Updated 5 years ago
- Open source templates you can use to bootstrap your security programs☆868Updated 3 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆630Updated last year
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆898Updated last week
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆693Updated 11 months ago
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆484Updated this week
- A framework for developing alerting and detection strategies for incident response.☆786Updated last week
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,186Updated 3 months ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆604Updated last month