panther-labs/panther_analysis_tool external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

panther-labs/panther_analysis_tool

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/panther-labs/panther_analysis_tool)

Close

panther-labs / panther_analysis_toolView on GitHubMore

• External links
• Readme badge

Command line tool for working with Panther rules and policies

☆48May 22, 2026Updated last week

Alternatives and similar repositories for panther_analysis_tool

Users that are interested in panther_analysis_tool are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• panther-labs / panther-analysis

  View on GitHub
  Built-in Panther detection rules and policies
  ☆452May 22, 2026Updated last week
• threat-punter / detection-as-code-example

  View on GitHub
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆32Jul 27, 2023Updated 2 years ago
• haidermdost / Threat-Detection-Maturity-Framework

  View on GitHub
  ☆19Sep 13, 2021Updated 4 years ago
• mandiant / ARDvark

  View on GitHub
  ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.
  ☆36Jun 1, 2023Updated 2 years ago
• spotify / gcp-aws-iam-federation-webidentity

  View on GitHub
  Creates needed resources for federating access between a GCP service account and AWS IAM role.
  ☆30Apr 3, 2024Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• shellcromancer / audit-log-wall-of-shame

  View on GitHub
  Audit log wall of shame.
  ☆42Aug 20, 2025Updated 9 months ago
• panther-labs / mcp-panther

  View on GitHub
  Write detections, investigate alerts, and query logs from your favorite AI agents
  ☆44May 15, 2026Updated 2 weeks ago
• FalconForceTeam / FalconForge

  View on GitHub
  This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…
  ☆17Mar 10, 2023Updated 3 years ago
• OpenCSPM / opencspm-darkbit-community-controls

  View on GitHub
  OpenCSPM Community Controls
  ☆14May 18, 2021Updated 5 years ago
• RyPeck / aws_managed_policies

  View on GitHub
  AWS managed IAM policies
  ☆16Mar 24, 2022Updated 4 years ago
• redballoonsecurity / bal

  View on GitHub
  A framework for parsing binary data.
  ☆18Aug 12, 2022Updated 3 years ago
• themittenmac / threat-hunting-macos-book

  View on GitHub
  A companion Github repo for the book - Threat Hunting macOS by Jaron Bradley
  ☆21Jul 26, 2025Updated 10 months ago
• jordisk / TheHive2Sigma

  View on GitHub
  Python script to automatically create sigma rules from The hive observables
  ☆25Mar 17, 2019Updated 7 years ago
• blackberry / UBCIS

  View on GitHub
  Ultimate Benchmark for Container Image Scanners
  ☆13Oct 16, 2020Updated 5 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• HASecuritySolutions / LogCampaign

  View on GitHub
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆55Jul 1, 2022Updated 3 years ago
• hidd3ncod3s / runpedmp

  View on GitHub
  RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …
  ☆10Jul 1, 2015Updated 10 years ago
• Yamato-Security / suzaku-rules

  View on GitHub
  ☆13May 23, 2026Updated last week
• uber-archive / terraform

  View on GitHub
  Terraform is a tool for building, changing, and combining infrastructure safely and efficiently.
  ☆10Aug 9, 2016Updated 9 years ago
• counteractive / security-controls

  View on GitHub
  ☆48Feb 22, 2023Updated 3 years ago
• forward3d / garrison

  View on GitHub
  Security, Compliance and Informational Dashboard System
  ☆25May 12, 2021Updated 5 years ago
• chronicle / detection-rules

  View on GitHub
  Collection of example YARA-L rules for use within Google Security Operations
  ☆495Updated this week
• SirAppSec / bsides-shadow-api

  View on GitHub
  This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me
  ☆18Aug 5, 2024Updated last year
• bromiley / pollen

  View on GitHub
  pollen - A command-line tool for interacting with TheHive
  ☆36Jun 6, 2019Updated 6 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆339May 7, 2026Updated 3 weeks ago
• jshlbrd / detection-engineering-pocket-guide

  View on GitHub
  pocket guide for core detection engineering concepts
  ☆31May 8, 2023Updated 3 years ago
• slyd0g / SwiftLiverpool

  View on GitHub
  Enumerate Location Services using CoreLocation API on macOS
  ☆19Dec 2, 2021Updated 4 years ago
• lprat / logstash-plugins

  View on GitHub
  My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by …
  ☆10Jul 26, 2019Updated 6 years ago
• Zombiehelp54 / CTF

  View on GitHub
  CTF Writeups
  ☆12Feb 25, 2023Updated 3 years ago
• GhostManager / mythic_sync

  View on GitHub
  Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+
  ☆24Jul 31, 2025Updated 9 months ago
• wisepythagoras / honeyshell

  View on GitHub
  An SSH honeypot written entirely in Go.
  ☆14Dec 4, 2025Updated 5 months ago
• wunderwuzzi23 / natty-slipstream

  View on GitHub
  Simplified NAT Slipstream server and client
  ☆21Dec 4, 2020Updated 5 years ago
• runreveal / sigmalite

  View on GitHub
  ☆57Dec 13, 2025Updated 5 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• k-bailey / detection-engineering-maturity-matrix

  View on GitHub
  ☆101Sep 16, 2022Updated 3 years ago
• sammcj / mcp-snyk

  View on GitHub
  MCP Server for Snyk Security Scanning
  ☆15Feb 23, 2025Updated last year
• hougesen / blame-me.nvim

  View on GitHub
  A lean git blame plugin for neovim.
  ☆16Dec 1, 2025Updated 5 months ago
• mandiant / AuditParser

  View on GitHub
  AuditParser
  ☆60Aug 28, 2013Updated 12 years ago
• asaurusrex / MachoBins

  View on GitHub
  ☆15Jul 20, 2022Updated 3 years ago
• aws-samples / amazon-neptune-aws-config-visualization

  View on GitHub
  ☆23May 11, 2022Updated 4 years ago
• center-for-threat-informed-defense / threat-modeling-with-attack

  View on GitHub
  Threat Modeling with ATT&CK defines how to integreate MITRE ATT&CK® into your organization’s existing threat modeling methodology.
  ☆14May 28, 2025Updated last year