infosecB / awesome-detection-engineeringLinks
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
☆1,126Updated last month
Alternatives and similar repositories for awesome-detection-engineering
Users that are interested in awesome-detection-engineering are comparing it to the libraries listed below
Sorting:
- Incident Response Methodologies 2022☆1,101Updated 10 months ago
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆703Updated 9 months ago
- A concise, directive, specific, flexible, and free incident response plan template☆751Updated last year
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,621Updated last week
- Awesome Security lists for SOC/CERT/CTI☆1,239Updated this week
- A repository of curated datasets from various attacks☆726Updated this week
- A knowledge base of actionable Incident Response techniques☆662Updated 3 years ago
- Splunk Security Content☆1,568Updated this week
- SIEM Tactics, Techiques, and Procedures☆694Updated last week
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆713Updated 2 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆934Updated last year
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,207Updated last week
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆960Updated 2 years ago
- A curated list of Awesome Threat Intelligence Blogs☆489Updated 3 weeks ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆643Updated last year
- A curated list of annual cyber security reports☆983Updated this week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…�☆745Updated last year
- Cyber Incident Response Team Playbook Battle Cards☆426Updated last year
- A framework for developing alerting and detection strategies for incident response.☆837Updated 5 months ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆631Updated 6 months ago
- Purple Team Exercise Framework☆766Updated 2 years ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆497Updated last year
- Playbooks for SOC Analysts☆670Updated 3 years ago
- Splunk Boss of the SOC version 3 dataset.☆407Updated 5 years ago
- GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]☆1,538Updated last year
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,207Updated last month
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆720Updated last year
- A collection of resources for Threat Hunters☆914Updated last year
- A python module for working with ATT&CK☆657Updated last week
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆801Updated 3 weeks ago