Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, podcasts, Twitter/X accounts and a set of tools relevant to the role of SOC analyst.
☆43Feb 14, 2026Updated 3 weeks ago
Alternatives and similar repositories for awesome-soc-analyst
Users that are interested in awesome-soc-analyst are comparing it to the libraries listed below
Sorting:
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆151Updated this week
- MISP to Microsoft Defender integration☆17Feb 24, 2026Updated last week
- Welcome to the hands-on resource hub for the Generative AI Development Environments Bootcamp. This repo is designed to help you explore d…☆25Oct 22, 2025Updated 4 months ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆29Sep 29, 2025Updated 5 months ago
- A SOC Analyst's tool to automate the investigation & validation of possible Indicators of Compromise (IOCs) and perform various tasks inc…☆29Jun 22, 2022Updated 3 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆86Dec 17, 2025Updated 2 months ago
- Some important DFIR Resources☆84Mar 16, 2023Updated 2 years ago
- QueryGPT-ADK is an open-source, multi-agent system for natural language to SQL query generation and explanation. It leverages LLMs and v…☆16Jul 23, 2025Updated 7 months ago
- ☆16Jul 8, 2024Updated last year
- Ransomware dataset, containing dynamic behaviour of more than 60 distinct ransomware families.☆10Aug 29, 2022Updated 3 years ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆52Apr 22, 2025Updated 10 months ago
- Netwitness Maltego integration Project☆18May 9, 2017Updated 8 years ago
- Multilayered secret detection tool☆41Feb 11, 2026Updated 3 weeks ago
- An AI-powered plugin for Caldera that orchestrates long-running LLM workflows to automatically create adversary emulation abilities and p…☆22Feb 2, 2026Updated last month
- ☆12Feb 11, 2024Updated 2 years ago
- ☆11Mar 9, 2018Updated 8 years ago
- Resources for Cyber Security☆11Oct 30, 2018Updated 7 years ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Dec 22, 2023Updated 2 years ago
- Some python scripts I wrote that help with various specialized AWS security things☆10Jan 15, 2020Updated 6 years ago
- Rigorously evaluating autonomous systems for cybersecurity at scale☆30Jul 9, 2025Updated 8 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- Website searcher for SEO comparisons / OSINT☆11Oct 13, 2019Updated 6 years ago
- A javascript library to convert Outlook *.msg files to *.eml☆11Jun 27, 2024Updated last year
- A Cybersecurity Generalist LLM (ICLR'26)☆33Feb 9, 2026Updated last month
- Reflex SOAR☆12Apr 1, 2022Updated 3 years ago
- OXA - Open XDR architecture☆12Apr 1, 2025Updated 11 months ago
- ☆13Nov 10, 2020Updated 5 years ago
- Secure Azure IoT solutions end to end☆14Nov 28, 2022Updated 3 years ago
- Open-source pedestal frame design files for cockpit build.☆35Feb 11, 2026Updated 3 weeks ago
- ☆12Jun 4, 2025Updated 9 months ago
- ☆22Aug 16, 2025Updated 6 months ago
- ☆12Oct 15, 2024Updated last year
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 4 months ago
- A python script for easy static analysis and automatic signature generation of malware.☆12Sep 30, 2013Updated 12 years ago
- GitHub landing page repo☆12Feb 18, 2026Updated 2 weeks ago
- A parser/timeline creator for auditd logs.☆16Aug 5, 2014Updated 11 years ago
- ☆11Oct 3, 2019Updated 6 years ago
- ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system☆13Jun 24, 2022Updated 3 years ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago