karmine05 / DEF3NDView external linksLinks
π‘οΈ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE ATT&CK, build SIGMA rules, and visualize attack paths.
β46Jun 28, 2025Updated 7 months ago
Alternatives and similar repositories for DEF3ND
Users that are interested in DEF3ND are comparing it to the libraries listed below
Sorting:
- β61Updated this week
- Threat feeds designed to extract adversarial TTPs and IOCs, using: β¨AIβ¨β64Updated this week
- A curated list of LLM driven Cyber security Resourcesβ45Oct 20, 2025Updated 3 months ago
- Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersecβ¦β14Jul 19, 2025Updated 6 months ago
- An AI-powered plugin for Caldera that orchestrates long-running LLM workflows to automatically create adversary emulation abilities and pβ¦β21Feb 2, 2026Updated last week
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.β18Jun 16, 2025Updated 8 months ago
- Cyber Threats Detection Rulesβ14Sep 16, 2025Updated 4 months ago
- Config files for my GitHub profile.β14May 7, 2023Updated 2 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders undβ¦β127Apr 6, 2024Updated last year
- KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Microβ¦β126Jan 11, 2026Updated last month
- yara detection rules for hunting with the threathunting-keywords projectβ157May 11, 2025Updated 9 months ago
- Splunk app to compare Endpoint Detection and Response solutions based on MITRE ATT&CK evaluations (APT3, APT29, Carbanak + FIN7, Wizard Sβ¦β19Sep 5, 2022Updated 3 years ago
- When Your Vision Reaches Beyond IAM Boundary Scope in AWS Cloudβ45Dec 7, 2025Updated 2 months ago
- Welcome to the hands-on resource hub for the Generative AI Development Environments Bootcamp. This repo is designed to help you explore dβ¦β25Oct 22, 2025Updated 3 months ago
- Kusto and Log Analytics MCP server help you execute a KQL (Kusto Query Language) query within an AI prompt, analyze, and visualize the daβ¦β19Dec 28, 2025Updated last month
- Repo for experimenting and testing MCP server builds for CTI-related research.β27May 13, 2025Updated 9 months ago
- A network logging tool that logs per process activitiesβ32Jun 13, 2023Updated 2 years ago
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.β29Apr 10, 2024Updated last year
- A Windows Event Log MCPβ40Aug 25, 2025Updated 5 months ago
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grouβ¦β26Oct 3, 2023Updated 2 years ago
- Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, poβ¦β35Jul 12, 2025Updated 7 months ago
- General Contentβ25Dec 23, 2025Updated last month
- Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.β79Feb 4, 2026Updated last week
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projectsβ34Feb 28, 2025Updated 11 months ago
- this script will help you find favicon hashes which you can use to shodan to get more details about an assetβ30Mar 18, 2025Updated 10 months ago
- β12Apr 6, 2025Updated 10 months ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigationβ77May 21, 2024Updated last year
- MISP Playbooksβ222Oct 14, 2025Updated 4 months ago
- PowerShell-based Automation of Defender for Endpointβ184Jul 3, 2025Updated 7 months ago
- ETHICAL-HACKINGβ12Dec 20, 2023Updated 2 years ago
- π Real-time threat detection for smart contractsβ10May 16, 2023Updated 2 years ago
- Google Maps for AWS IAMβ262Updated this week
- β85Feb 4, 2026Updated last week
- A pySigma wrapper and langchain toolkit for automatic rule creation/translationβ91Nov 3, 2025Updated 3 months ago
- This Repository Talks about the Follina MSDT from Defender Perspectiveβ38Jun 2, 2022Updated 3 years ago
- Code repository for CISO agent as part of ITBenchβ21May 8, 2025Updated 9 months ago
- Contains research.splunk.com site codeβ11Apr 10, 2024Updated last year
- CuanticoSecurityβ10Sep 7, 2016Updated 9 years ago
- Perform file-based malware scan on your on-prem servers with AWSβ14Oct 31, 2023Updated 2 years ago