detection-engineering topic

List detection-engineering repositories

sigmaio

47
Stars
3
Forks
Watchers

simple webapp for converting sigma rules into siem queries using the pySigma library

verified publisher icon M3NIX

attack2jira

113
Stars
29
Forks
Watchers

attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage

verified publisher icon mvelazc0

PurpleSharp

747
Stars
104
Forks
Watchers

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

verified publisher icon mvelazc0

awesome-detection-engineering

625
Stars
62
Forks
12
Watchers

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying m...

verified publisher icon infosecB

security_content

1.2k
Stars
331
Forks
Watchers

Splunk Security Content

verified publisher icon splunk

EVTX-ATTACK-SAMPLES

2.1k
Stars
392
Forks
Watchers

Windows Events Attack Samples

verified publisher icon sbousseaden

Slides

361
Stars
59
Forks
Watchers

Misc Threat Hunting Resources

verified publisher icon sbousseaden

stratus-red-team

1.6k
Stars
194
Forks
Watchers

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

verified publisher icon DataDog

threatest

311
Stars
26
Forks
Watchers

Threatest is a CLI and Go framework for end-to-end testing threat detection rules.

verified publisher icon DataDog

ControlCompass.github.io

117
Stars
26
Forks
Watchers

Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques

verified publisher icon ControlCompass