infosecB / awesome-detection-engineeringLinks
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
☆1,026Updated last month
Alternatives and similar repositories for awesome-detection-engineering
Users that are interested in awesome-detection-engineering are comparing it to the libraries listed below
Sorting:
- Incident Response Methodologies 2022☆1,063Updated 3 months ago
- A concise, directive, specific, flexible, and free incident response plan template☆724Updated last year
- A curated list of annual cyber security reports☆590Updated last week
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆680Updated 3 months ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆670Updated last week
- SIEM Tactics, Techiques, and Procedures☆652Updated last week
- A knowledge base of actionable Incident Response techniques☆646Updated 3 years ago
- A repository of curated datasets from various attacks☆666Updated last week
- A collection of sources of documentation, as well as field best practices, to build/run a SOC☆1,465Updated this week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆696Updated 6 months ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆494Updated last year
- Cyber Incident Response Team Playbook Battle Cards☆385Updated last year
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,193Updated last month
- Splunk Security Content☆1,465Updated this week
- Awesome Security lists for SOC/CERT/CTI☆1,052Updated this week
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆933Updated last year
- GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]☆1,484Updated last year
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆626Updated last year
- A python module for working with ATT&CK☆577Updated this week
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆879Updated 11 months ago
- A curated list of Awesome Threat Intelligence Blogs☆437Updated last week
- Purple Team Exercise Framework☆725Updated last year
- A framework for developing alerting and detection strategies for incident response.☆774Updated 3 years ago
- Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).☆757Updated 3 months ago
- Splunk Boss of the SOC version 3 dataset.☆357Updated 5 years ago
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆681Updated 10 months ago
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,169Updated 2 months ago
- Playbooks for SOC Analysts☆566Updated 2 years ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,325Updated last week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆593Updated this week