#Awesome#✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
翻译 - ☁️ :zap:云的粒度、可操作的对手仿真。
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
#Awesome#Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying m...
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
翻译 - Watcher-开源网络安全威胁搜寻平台。用Django&React JS开发。
Threat-hunting tool for Linux
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalone or with other job schedulers like Nomad.
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, right from your terminal.
Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
#自然语言处理#pretrained BERT model for cyber security text, learned CyberSecurity Knowledge
Bypass 403
A toolkit for Security Researchers
Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
ThreatSeeker: Threat Hunting via Windows Event Logs