infosecB / awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
☆852Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for awesome-detection-engineering
- Incident Response Methodologies 2022☆978Updated 9 months ago
- A knowledge base of actionable Incident Response techniques☆613Updated 2 years ago
- Cyber Incident Response Team Playbook Battle Cards☆359Updated 6 months ago
- A repository of curated datasets from various attacks☆588Updated this week
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆768Updated last year
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆556Updated 2 weeks ago
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,246Updated this week
- Purple Team Exercise Framework☆626Updated 10 months ago
- A concise, directive, specific, flexible, and free incident response plan template☆650Updated 6 months ago
- Splunk Security Content☆1,295Updated this week
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆486Updated 7 months ago
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆260Updated 9 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆588Updated 5 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆812Updated 2 months ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆567Updated 4 months ago
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆629Updated 2 months ago
- Awesome Security lists for SOC/CERT/CTI☆715Updated this week
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆614Updated last month
- A curated list of Awesome Threat Intelligence Blogs☆333Updated this week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆473Updated last week
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆529Updated 2 months ago
- Detect Tactics, Techniques & Combat Threats☆2,067Updated this week
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,139Updated last year
- SIEM Tactics, Techiques, and Procedures☆587Updated last month
- Hunting queries and detections☆731Updated 2 months ago
- A collection of resources for Threat Hunters☆856Updated last month
- A framework for developing alerting and detection strategies for incident response.☆693Updated 2 years ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,162Updated 2 weeks ago
- Scripts and a (future) library to improve users' interactions with the ATT&CK content☆582Updated 11 months ago