Alternatives and similar repositories for mcp-panther

Users that are interested in mcp-panther are comparing it to the libraries listed below

• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 3 years ago
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• runreveal / sigmalite
  ☆47Updated 5 months ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆36Updated 5 months ago
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆42Updated 2 weeks ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆30Updated 2 years ago
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆177Updated last week
• KatTraxler / gcpdocs
  Repository to archive GCP Documentation for local use
  ☆16Updated 6 months ago
• adanalvarez / TrailAlerts
  TrailAlerts is a AWS-native, serverless cloud-detection tool that lets you define simple rules as code and get rich alerts about events i…
  ☆48Updated 4 months ago
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• SecurityRunners / cloud-exposure-catalog
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆15Updated last year
• kpolley / PIIDetective
  PII detection platform, leveraging human-in-the-loop AI
  ☆53Updated 9 months ago
• aws-samples / data-perimeter-helper
  Data perimeter helper is a tool that helps you design and anticipate the impact of your data perimeter controls
  ☆17Updated 6 months ago
• okta / customer-detections
  ☆145Updated 3 weeks ago
• dandye / adk_runbooks
  ☆46Updated last week
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated 10 months ago
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆145Updated last year
• Permiso-io-tools / cloudtail
  ☆30Updated 2 months ago
• zenzora / awesome-gcpsec
  ☆14Updated 3 years ago
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆165Updated 2 months ago
• twilio-labs / socless
  The SOCless automation framework
  ☆140Updated 6 months ago
• lacework-dev / Cloud-Hunter
  Dynamically generate and hunt with Lacework LQL queries quickly and efficiently
  ☆27Updated last year
• Betterment / claws
  💅🏽 analyzes your github actions
  ☆93Updated last week
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆29Updated 2 years ago
• DataDog / grimoire
  Generate datasets of cloud audit logs for common attacks
  ☆219Updated last year
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated last month
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 5 months ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆32Updated 10 months ago
• endgameinc / varna
  Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)
  ☆52Updated 2 years ago
• matthewdfuller / aws-guides
  AWS docs, guides, and other tools
  ☆75Updated 2 years ago