infosecB / awesome-detection-engineeringLinks
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
☆1,011Updated 2 weeks ago
Alternatives and similar repositories for awesome-detection-engineering
Users that are interested in awesome-detection-engineering are comparing it to the libraries listed below
Sorting:
- Incident Response Methodologies 2022☆1,063Updated 3 months ago
- A concise, directive, specific, flexible, and free incident response plan template☆718Updated last year
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆676Updated 2 months ago
- A knowledge base of actionable Incident Response techniques☆643Updated 3 years ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆696Updated 5 months ago
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,449Updated 3 weeks ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆664Updated last week
- A repository of curated datasets from various attacks☆662Updated last week
- A curated list of annual cyber security reports☆571Updated this week
- SIEM Tactics, Techiques, and Procedures☆643Updated 2 weeks ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆873Updated 10 months ago
- Cyber Incident Response Team Playbook Battle Cards☆382Updated last year
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆679Updated 9 months ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆493Updated last year
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆924Updated last year
- Splunk Security Content☆1,450Updated this week
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,188Updated 3 weeks ago
- A python module for working with ATT&CK☆573Updated 2 weeks ago
- Awesome Security lists for SOC/CERT/CTI☆1,021Updated this week
- GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]☆1,480Updated 11 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆620Updated last year
- Collection of awesome resources on intelligence writing, including manuals/guides, standards, books, tranings, articles, videos, etc☆551Updated 11 months ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆585Updated 2 weeks ago
- A collection of resources for Threat Hunters☆892Updated 9 months ago
- Playbooks for SOC Analysts☆543Updated 2 years ago
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆739Updated 3 months ago
- A curated list of Awesome Threat Intelligence Blogs☆430Updated last month
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆281Updated last year
- Splunk Boss of the SOC version 3 dataset.☆349Updated 5 years ago
- Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers☆703Updated last month