isherwood-sec / detection-engineeringLinks
☆48Updated last week
Alternatives and similar repositories for detection-engineering
Users that are interested in detection-engineering are comparing it to the libraries listed below
Sorting:
- Some important DFIR Resources☆83Updated 2 years ago
- Practical Threat Detection Engineering, Published by Packt☆72Updated last year
- SIEM Cheat Sheet☆74Updated last year
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆196Updated 11 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆258Updated this week
- Indexes for SANS Courses and GIAC Certifications☆253Updated last year
- Jupyter Notebooks for the Blue Team☆144Updated 3 months ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆256Updated 3 months ago
- Tools for simulating threats☆186Updated last year
- This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR☆78Updated 3 years ago
- Repository resource for threat hunter☆158Updated 6 years ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆90Updated last year
- MISP Playbooks☆203Updated last week
- Harness the power of Splunk for your investigations☆111Updated this week
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- ☆180Updated last year
- Creation of a laboratory for malware analysis in AWS☆100Updated 2 years ago
- Automating Security Detection Engineering, published by Packt☆57Updated 8 months ago
- Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, po…☆15Updated 3 months ago
- links collected from SOC Core Skills class☆85Updated 4 years ago
- Resources To Learn And Understand SIGMA Rules☆177Updated 2 years ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆122Updated last year
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆117Updated 2 years ago
- The Threat Actor Profile Guide for CTI Analysts☆107Updated last year
- ☆60Updated 4 years ago
- Open Source Security Operations Center Documentation☆188Updated last month
- A list of Splunk queries that I've collected and used over time.☆85Updated 4 years ago
- These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.☆55Updated 6 years ago
- ☆46Updated 2 years ago
- ☆105Updated last month