A POC to implement Detection-as-Code with Terraform and Sumo Logic.
☆31Jul 27, 2023Updated 2 years ago
Alternatives and similar repositories for detection-as-code-example
Users that are interested in detection-as-code-example are comparing it to the libraries listed below
Sorting:
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆60Mar 12, 2022Updated 3 years ago
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Mar 10, 2023Updated 2 years ago
- Community content for LogRhythm Axon. Includes Dashboards, searches, analytics rules, processing policies and more.☆10Jul 26, 2024Updated last year
- ☆52Dec 13, 2025Updated 2 months ago
- A small crappy script I wrote that converts the Sigma Windows Process Creation events to KQL via PySigma. Designed for CI/CD☆10Nov 7, 2023Updated 2 years ago
- SigmaHQ pySigma CrowdStrike processing pipeline☆27Nov 30, 2025Updated 3 months ago
- pySigma Cookiecutter backend template☆24Sep 17, 2025Updated 5 months ago
- Safety philosopy: example principles for an organization and management☆13Apr 14, 2025Updated 10 months ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Jul 27, 2022Updated 3 years ago
- Collection of example YARA-L rules for use within Google Security Operations☆473Dec 5, 2025Updated 2 months ago
- ☆13Feb 6, 2018Updated 8 years ago
- ☆30Jan 13, 2026Updated last month
- Automating Security Detection Engineering, published by Packt☆67Oct 12, 2024Updated last year
- Command line tool for working with Panther rules and policies☆48Updated this week
- Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.☆23Dec 13, 2018Updated 7 years ago
- Manage GuardDuty At Enterprise Scale☆22Sep 17, 2020Updated 5 years ago
- Integration for Jira ticket creation from Tenable vulnerability scans☆17Mar 28, 2019Updated 6 years ago
- \B\C\M\C\ Open Source Software☆20Jan 3, 2022Updated 4 years ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆92Nov 3, 2025Updated 3 months ago
- Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!☆21Aug 23, 2024Updated last year
- Caterpillar is a security scanning library for AI agent skill files (e.g., Claude Code skills) for dangerous or malicious behavior☆32Feb 16, 2026Updated last week
- Knowledge Report Alert & Normalization Generator☆26Feb 11, 2026Updated 2 weeks ago
- OSSEM Common Data Model☆56Sep 20, 2022Updated 3 years ago
- AWS EKS Cluster Forensics☆23Aug 16, 2021Updated 4 years ago
- A repository of my own Sigma detection rules.☆163Nov 25, 2025Updated 3 months ago
- Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…☆28Dec 17, 2025Updated 2 months ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Jul 12, 2023Updated 2 years ago
- ☆65May 21, 2024Updated last year
- Python samples and utilities for Chronicle APIs☆88Nov 7, 2025Updated 3 months ago
- ☆29Dec 11, 2025Updated 2 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆82Jun 9, 2025Updated 8 months ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Oct 7, 2022Updated 3 years ago
- ☆37Feb 4, 2026Updated 3 weeks ago
- ☆14Feb 6, 2026Updated 3 weeks ago
- ☆93Dec 1, 2025Updated 3 months ago
- A companion Github repo for the book - Threat Hunting macOS by Jaron Bradley☆17Jul 26, 2025Updated 7 months ago
- Scripts written in BASH, PowerShell, Python, and other languages.☆10Aug 5, 2023Updated 2 years ago
- Malware detonation platform Polygon integration☆10Aug 1, 2023Updated 2 years ago
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago