sublime-security / sublime-platform
A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and control, hunt for advanced threats, collaborate with the community, and write detections-as-code.
☆166Updated last week
Related projects ⓘ
Alternatives and complementary repositories for sublime-platform
- Sublime rules for email attack detection, prevention, and threat hunting.☆256Updated this week
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆116Updated 3 months ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆129Updated this week
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆251Updated last month
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆148Updated 2 months ago
- An opensource sigma conversion tool built using pysigma☆95Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆189Updated last month
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆202Updated last year
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆97Updated 8 months ago
- Docker image for MISP☆115Updated last week
- Docker image for Velocidex Velociraptor☆113Updated 4 months ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆104Updated this week
- Rules generated from our investigations.☆188Updated last week
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆98Updated 3 weeks ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆123Updated 8 months ago
- ☆82Updated 2 months ago
- ☆114Updated last year
- ☆80Updated last month
- Anvilogic Forge☆86Updated this week
- HASH (HTTP Agnostic Software Honeypot)☆128Updated 6 months ago
- ☆85Updated 2 years ago
- A tool that allows you to document and assess any security automation in your SOC☆41Updated last week
- LotL RMM☆85Updated 3 weeks ago
- MISP Playbooks☆174Updated 3 weeks ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆161Updated last month
- A repository of my own Sigma detection rules.☆156Updated 2 months ago
- Repository of attack and defensive information for Business Email Compromise investigations☆228Updated 2 months ago
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆74Updated 10 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆141Updated last year
- Security Onion + Automation + Response Lab including n8n and Velociraptor☆105Updated 2 years ago