A starter pack of resources to help you get started in Detection Engineering.
☆191Jun 4, 2026Updated last month
Alternatives and similar repositories for detection-engineering-starter-pack
Users that are interested in detection-engineering-starter-pack are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…☆45Jun 28, 2025Updated last year
- Convert Sigma rules to SIEM queries, directly in your browser.☆119Jun 20, 2026Updated last week
- Jupyter Univere is a search engine for all infosec jupyter notebooks☆38Mar 24, 2025Updated last year
- Harness the security superpowers of your cloud asset inventory☆11Sep 22, 2024Updated last year
- Living off the False Positive!☆42Apr 3, 2026Updated 3 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆326Jun 25, 2026Updated last week
- Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…☆1,231Jun 18, 2026Updated 2 weeks ago
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 7 months ago
- ☆58Mar 6, 2026Updated 3 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆487Oct 29, 2025Updated 8 months ago
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆814Jan 14, 2026Updated 5 months ago
- ☆33Mar 24, 2026Updated 3 months ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Aug 30, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Repo for experimenting and testing MCP server builds for CTI-related research.☆27May 13, 2025Updated last year
- An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…☆65Mar 30, 2026Updated 3 months ago
- Sigma Queries turned into KQL for Defender using pysigma☆12Mar 29, 2026Updated 3 months ago
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,222Jun 22, 2026Updated last week
- Cyber Threat Intelligence☆82Dec 7, 2025Updated 6 months ago
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆31Aug 4, 2025Updated 11 months ago
- KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…☆1,713Jun 22, 2026Updated last week
- Random tips and tricks RE: ransomware☆14Aug 17, 2021Updated 4 years ago
- ☆73Jun 15, 2026Updated 2 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Repository to archive AWS Documentation for local use☆51Oct 14, 2024Updated last year
- ☆13Mar 28, 2026Updated 3 months ago
- The Infosec Community Definitive Guide to Jupyter Notebooks☆134Oct 17, 2020Updated 5 years ago
- Generate datasets of cloud audit logs for common attacks☆241Jun 15, 2026Updated 2 weeks ago
- A Splunk app to connect to your MISP instance☆112Jun 25, 2026Updated last week
- Active C&C Detector☆156Oct 5, 2023Updated 2 years ago
- An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…☆174Mar 11, 2026Updated 3 months ago
- Simple Automated Powershell Keylogger☆24May 21, 2020Updated 6 years ago
- This is a repository to experiment with MCP for security☆47Jan 22, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- An index of publicly available and open-source threat detection rulesets.☆136Apr 17, 2025Updated last year
- Summaries, transcripts, key points, and other useful insights from fwd:cloudsec 2025 talks for those of us who don't have time to watch e…☆85Jul 4, 2025Updated last year
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆36Nov 13, 2025Updated 7 months ago
- ultimate-cybersecurity-lab☆27Mar 19, 2024Updated 2 years ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆662Aug 4, 2025Updated 11 months ago
- ☆21May 8, 2022Updated 4 years ago
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆170Jun 10, 2026Updated 3 weeks ago