Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
β1,662Jan 8, 2025Updated last year
Alternatives and similar repositories for matano
Users that are interested in matano are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- APIs to run user code in any developer productβ117Mar 10, 2023Updated 3 years ago
- πΈ The Map3 Supercharge SDK connects crypto apps to Wallets, Exchanges & Bridges, enabling cross-chain deposits and increasing volumes.β99Jun 23, 2023Updated 2 years ago
- β10Dec 30, 2022Updated 3 years ago
- Granular, Actionable Adversary Emulation for the Cloudβ2,283Mar 12, 2026Updated last week
- Threatest is a CLI and Go framework for end-to-end testing threat detection rules.β339Mar 17, 2026Updated last week
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.β393Jan 20, 2026Updated 2 months ago
- A lightweight logger for machine learning teams to log images and predictions in production.β154May 3, 2023Updated 2 years ago
- Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation oβ¦β1,155Dec 19, 2025Updated 3 months ago
- Built-in Panther detection rules and policiesβ441Updated this week
- Hayabusa (ιΌ) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.β3,062Feb 24, 2026Updated last month
- Automating situational awareness for cloud penetration tests.β2,320Mar 10, 2026Updated 2 weeks ago
- Open source toolkit created to enable easy adoption of software enclavesβ162Dec 12, 2025Updated 3 months ago
- Production-ready detection & response queries for osqueryβ602Aug 13, 2025Updated 7 months ago
- The open source customer feature framework for B2Bs. Easily control how your product behaves and looks for different customers.β48Jul 5, 2023Updated 2 years ago
- The AI automation platform built for security teams and agents.β3,530Updated this week
- A Software as a Service (SaaS) log collection framework.β184Mar 16, 2026Updated last week
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and securβ¦β174Mar 11, 2026Updated last week
- RedEye is a visual analytic tool supporting Red & Blue Team operationsβ2,744Oct 20, 2023Updated 2 years ago
- Generate datasets of cloud audit logs for common attacksβ235Mar 17, 2026Updated last week
- Open Source Cloud Securityβ727Oct 26, 2023Updated 2 years ago
- Open Source Vulnerability Management Platformβ6,304Feb 13, 2026Updated last month
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshβ¦β3,653Mar 11, 2026Updated 2 weeks ago
- Tenzir is the data pipeline engine for security teams.β730Updated this week
- The open design tools SDK. Try our new experimental wireframing tool! πβ444Aug 2, 2024Updated last year
- Main Sigma Rule Repositoryβ10,224Updated this week
- ElectricEye is a multi-cloud, multi-SaaS Python CLI tool for Asset Management, Security Posture Management & Attack Surface Monitoring suβ¦β1,036Feb 9, 2026Updated last month
- Prowler is the worldβs most widely used open-source cloud security platform that automates security and compliance across any cloud envirβ¦β13,387Updated this week
- OCSF Schemaβ801Updated this week
- Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.β2,221Updated this week
- IntelOwl: manage your Threat Intelligence at scaleβ4,505Updated this week
- Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.β7,732Updated this week
- β¨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The β¦β290Feb 5, 2024Updated 2 years ago
- Left on Readβ204Dec 13, 2025Updated 3 months ago
- Metlo is an open-source API security platform.β1,774Jul 25, 2025Updated 8 months ago
- This is a collection of threat detection rules / rules engines that I have come across.β297May 5, 2024Updated last year
- Multi-Cloud Security Auditing Toolβ7,579Sep 23, 2025Updated 6 months ago
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repoβ¦β2,197Updated this week
- β2,525Updated this week
- Convert cloudtrail data to MITRE ATT&CK Sightingsβ82Jul 25, 2022Updated 3 years ago