panther-labs/panther-analysis external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

panther-labs/panther-analysis

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/panther-labs/panther-analysis)

Close

panther-labs / panther-analysisView on GitHubMore

• External links
• Readme badge

Built-in Panther detection rules and policies

☆441Mar 29, 2026Updated this week

Alternatives and similar repositories for panther-analysis

Users that are interested in panther-analysis are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• panther-labs / panther_analysis_tool

  View on GitHub
  Command line tool for working with Panther rules and policies
  ☆48Updated this week
• chronicle / detection-rules

  View on GitHub
  Collection of example YARA-L rules for use within Google Security Operations
  ☆480Dec 5, 2025Updated 3 months ago
• panther-labs / tutorials

  View on GitHub
  Cloud security tutorials and best practices
  ☆38Mar 20, 2023Updated 3 years ago
• elastic / detection-rules

  View on GitHub
  ☆2,531Updated this week
• infosecB / awesome-detection-engineering

  View on GitHub
  Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…
  ☆1,159Dec 19, 2025Updated 3 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• matanolabs / matano

  View on GitHub
  Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
  ☆1,664Jan 8, 2025Updated last year
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆341Mar 22, 2026Updated last week
• jshlbrd / detection-engineering-pocket-guide

  View on GitHub
  pocket guide for core detection engineering concepts
  ☆31May 8, 2023Updated 2 years ago
• splunk / security_content

  View on GitHub
  Splunk Security Content
  ☆1,592Updated this week
• easttimor / aws-incident-response

  View on GitHub
  ☆375Feb 23, 2024Updated 2 years ago
• infosecB / detection-as-code

  View on GitHub
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆60Mar 12, 2022Updated 4 years ago
• 0x4D31 / detection-and-response-pipeline

  View on GitHub
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆291Feb 5, 2024Updated 2 years ago
• adanalvarez / TrailDiscover

  View on GitHub
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆174Mar 11, 2026Updated 2 weeks ago
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,250Updated this week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• DataDog / stratus-red-team

  View on GitHub
  Granular, Actionable Adversary Emulation for the Cloud
  ☆2,286Updated this week
• elastic / dorothy

  View on GitHub
  ☆192Mar 9, 2026Updated 3 weeks ago
• anvilogic-forge / armory

  View on GitHub
  Anvilogic Forge
  ☆116Sep 18, 2025Updated 6 months ago
• ReversecLabs / leonidas

  View on GitHub
  Automated Attack Simulation in the Cloud, complete with detection use cases.
  ☆611Nov 28, 2024Updated last year
• zmallen / cloudtrail2sightings

  View on GitHub
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆82Jul 25, 2022Updated 3 years ago
• palantir / alerting-detection-strategy-framework

  View on GitHub
  A framework for developing alerting and detection strategies for incident response.
  ☆855Sep 8, 2025Updated 6 months ago
• sublime-security / sublime-rules

  View on GitHub
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆353Updated this week
• rabobank-cdc / DeTTECT

  View on GitHub
  Detect Tactics, Techniques & Combat Threats
  ☆2,270Jan 21, 2026Updated 2 months ago
• teoseller / osquery-attck

  View on GitHub
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆808May 11, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• mbabinski / Sigma-Rules

  View on GitHub
  A repository of my own Sigma detection rules.
  ☆164Nov 25, 2025Updated 4 months ago
• dwillowtree / diana

  View on GitHub
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆223Sep 4, 2024Updated last year
• FalconForceTeam / FalconFriday

  View on GitHub
  Hunting queries and detections
  ☆893Oct 30, 2025Updated 5 months ago
• amrandazz / attack-guardduty-navigator

  View on GitHub
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆139Jul 23, 2021Updated 4 years ago
• okta / customer-detections

  View on GitHub
  A public collection of detections designed to detect threats associated with the Okta WIC Platform.
  ☆23Updated this week
• chainguard-dev / osquery-defense-kit

  View on GitHub
  Production-ready detection & response queries for osquery
  ☆602Aug 13, 2025Updated 7 months ago
• k-bailey / detection-engineering-maturity-matrix

  View on GitHub
  ☆99Sep 16, 2022Updated 3 years ago
• Cyb3r-Monk / RITA-J

  View on GitHub
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆209Jul 21, 2022Updated 3 years ago
• Loginsoft-LLC / threat-detection-rules

  View on GitHub
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆53Jul 27, 2022Updated 3 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• atc-project / atc-react

  View on GitHub
  A knowledge base of actionable Incident Response techniques
  ☆664May 31, 2022Updated 3 years ago
• ocsf / ocsf-schema

  View on GitHub
  OCSF Schema
  ☆802Mar 18, 2026Updated last week
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,508Jan 12, 2026Updated 2 months ago
• caizencloud / caizen

  View on GitHub
  Harness the security superpowers of your cloud asset inventory
  ☆11Sep 22, 2024Updated last year
• Cyb3r-Monk / Threat-Hunting-and-Detection

  View on GitHub
  Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
  ☆807Jan 14, 2026Updated 2 months ago
• splunk / attack_data

  View on GitHub
  A repository of curated datasets from various attacks
  ☆748Updated this week
• OTRF / OSSEM

  View on GitHub
  Open Source Security Events Metadata (OSSEM)
  ☆1,290Feb 27, 2023Updated 3 years ago