GitHub topics: threat-detection
spmedia/Crypto-Scam-and-Crypto-Phishing-Threat-Intel-Feed
A fresh feed of crypto phishing and crypto scam websites. Automatically updated daily/frequently.
Size: 457 KB - Last synced at: about 19 hours ago - Pushed at: about 20 hours ago - Stars: 23 - Forks: 0
ckvishwa/ai-malware-analysis
AI-powered malware analysis using CAPEv2, Python & ML
Language: Python - Size: 6.63 MB - Last synced at: about 22 hours ago - Pushed at: about 22 hours ago - Stars: 0 - Forks: 0
Compcode1/ioc1-recon
This IOC captures a foundational stage in the cyber kill chain: reconnaissance — where the attacker has not yet breached the system, but is actively probing to discover what might be open, unguarded, or improperly exposed.
Language: Jupyter Notebook - Size: 0 Bytes - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 0 - Forks: 0
raditz22/Awesome-AI-Deception
An awesome list of resources on AI cyber deception, exploring adversarial machine learning techniques used to deceive and secure systems
Size: 4.88 KB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 1 - Forks: 0
elastic/detection-rules
Language: Python - Size: 257 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 2,281 - Forks: 560
akto-api-security/akto
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
Language: Java - Size: 232 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 1,272 - Forks: 245
sefinek/Malicious-IP-Addresses
A list of malicious IP addresses associated with botnets, cyberattacks, and the generation of artificial traffic on websites. Useful for network administrators and security companies to block threats and protect against DDoS attacks.
Language: JavaScript - Size: 11.6 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 21 - Forks: 0
hassanmajaro/log-anomaly-detector-using-splunk
A splunk-based system for detecting log anomalies, failed logins, and suspicious user behavior using queries, alerts, and dashboards.
Size: 5.27 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 0 - Forks: 0
infosecB/awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
Size: 116 KB - Last synced at: about 14 hours ago - Pushed at: 24 days ago - Stars: 970 - Forks: 86
USRRP/Dark-Web-Threat-Monitor
Language: Python - Size: 16.6 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 1 - Forks: 0
spmedia/PhishingSecLists
To be used with tools like GoBuster & DirBuster but these lists are specifically tailored and designed for scanning phishing <>< landing pages and other malicious or sketch af financial/crypto fraud websites.
Size: 648 KB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 44 - Forks: 6
utmstack/UTMStack
Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.
Language: Java - Size: 187 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 270 - Forks: 34
kunai-project/kunai
Threat-hunting tool for Linux
Language: Rust - Size: 1.22 MB - Last synced at: 4 days ago - Pushed at: 6 days ago - Stars: 832 - Forks: 64
piratianraj/CloudGuardianAI
AI-powered cloud threat detection system that uses machine learning to identify anomalous activities in AWS CloudTrail logs. This system implements isolation forest, autoencoder, and graph-based analysis techniques to detect security threats that traditional methods might miss.
Language: Python - Size: 1.54 MB - Last synced at: 4 days ago - Pushed at: 5 days ago - Stars: 0 - Forks: 0
turbot/tailpipe
select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, right from your terminal.
Language: Go - Size: 40.4 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 418 - Forks: 9
Lasara26/Attack-Detection-with-Machine-Learning
This project focuses on detecting cyber attacks using machine learning techniques. It employs various algorithms to analyze network traffic and identify potential threats in real-time.
Language: Python - Size: 2.37 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 0 - Forks: 0
0x4D31/awesome-threat-detection
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️
Size: 47.7 MB - Last synced at: 6 days ago - Pushed at: 10 months ago - Stars: 4,149 - Forks: 694
Lamentomori/TotalControl
Open-source NDR tool for blue teamers, offering real-time threat alerts, logging, and outbound traffic monitoring.
Size: 33.2 KB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 0 - Forks: 0
A9u3ybaCyb3r/SOC-Phishing-Defense-Simulation
This controlled lab environment emphasizes practical cybersecurity skills, ethical practices, and the importance of proactive defense strategies.
Size: 815 KB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 1 - Forks: 0
afernandez123/sql-log-analysis-soc
SOC analyst simulation: SQL-based log analysis, failed login detection, and suspicious activity flagging in PostgreSQL
Size: 6.84 KB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 0 - Forks: 0
LogCraftIO/logcraft-cli
Detection-as-Code CI/CD pipeline for modern security operations (SIEM, EDR, XDR, ...)
Language: Rust - Size: 592 KB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 21 - Forks: 1
st0pp3r/awesome-detection-engineer
Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools, logging configuration and best practices, event log references, resources, labs, data manipulation online tools, blogs, newsletters, good reads, books, trainings, podcasts, videos and twitter/x accounts.
Language: HTML - Size: 289 KB - Last synced at: about 2 hours ago - Pushed at: 12 days ago - Stars: 90 - Forks: 11
Cybersight-Security/Global-Threat-Map
Global Threat Map is an interactive visualization tool that displays potential cybersecurity threats around the world using real IP data from FireHOL threat intelligence feeds
Language: JavaScript - Size: 23 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 0 - Forks: 0
DataDog/stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
Language: Go - Size: 3.24 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 1,992 - Forks: 241
mpengin/zerocrumb-yara-rules
Yara Rules to detect the ZeroCrumb Chrome "Exploit"/Killchain
Language: YARA - Size: 16.6 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 0 - Forks: 0
helenscun/mitre-attack-threat-mapper
A comprehensive Python tool that maps malware to MITRE ATT&CK techniques, generates threat intelligence reports, and creates custom red team playbooks. This application fetches the latest MITRE ATT&CK framework data, identifies techniques associated with specific malware, visualizes attack patterns, and provides actionable security recommendations.
Language: Python - Size: 0 Bytes - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 0 - Forks: 0
mrheinen/lophiid
A distributed honeypot for monitoring large scale web attacks
Language: Go - Size: 65.8 MB - Last synced at: 11 days ago - Pushed at: 19 days ago - Stars: 14 - Forks: 2
El-Defaulter/Network-Security-Wazuh-ELK-Splunk
This project integrates Wazuh, ELK Stack (Elasticsearch, Logstash, Kibana), and Splunk to create a comprehensive network security monitoring solution. It collects, processes, stores, and analyzes security logs from endpoints and network devices, providing real-time threat detection, incident response, and visual dashboards.
Language: Shell - Size: 0 Bytes - Last synced at: 15 days ago - Pushed at: 15 days ago - Stars: 0 - Forks: 0
olafhartong/ATTACKdatamap
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
Language: PowerShell - Size: 2.5 MB - Last synced at: 14 days ago - Pushed at: over 4 years ago - Stars: 352 - Forks: 64
aymenmarjan/Implementing-AlienVault-OSSIM-with-Distributed-Architecture
A concise, step‑by‑step guide to deploy AlienVault OSSIM in VirtualBox, Covering network setup, server & sensor installation, configuration, and threat monitoring.
Size: 7.06 MB - Last synced at: 15 days ago - Pushed at: 15 days ago - Stars: 0 - Forks: 0
arnvjshi/Threat-Detection-Dashboard
ThreatShield AI-powered threat detection system using GROQ to analyze audio, image, and text data. It extracts insights and flags potential threats in real-time across multiple media formats.
Language: TypeScript - Size: 338 KB - Last synced at: 15 days ago - Pushed at: 15 days ago - Stars: 0 - Forks: 0
AlbinoGazelle/esxi-testing-toolkit
🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
Language: Python - Size: 13 MB - Last synced at: 21 days ago - Pushed at: 21 days ago - Stars: 72 - Forks: 8
0xNslabs/Awesome-AI-Deception
An awesome list of resources on AI cyber deception, exploring adversarial machine learning techniques used to deceive and secure systems
Size: 4.88 KB - Last synced at: 22 days ago - Pushed at: 22 days ago - Stars: 0 - Forks: 0
GoogleCloudPlatform/security-analytics
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
Language: Python - Size: 965 KB - Last synced at: 22 days ago - Pushed at: 11 months ago - Stars: 338 - Forks: 70
Kzax01/AWS-Security-Aerosecure
AeroSecure: Where Aerospace Meets AWS Security : How to Secure an Aerospace Infra ? Let's see! 🚀☁️🔐
Size: 263 MB - Last synced at: 24 days ago - Pushed at: 24 days ago - Stars: 1 - Forks: 0
ine-labs/ThreatSeeker
ThreatSeeker: Threat Hunting via Windows Event Logs
Language: Python - Size: 20.3 MB - Last synced at: 17 days ago - Pushed at: almost 2 years ago - Stars: 120 - Forks: 13
Yuriibe/PortGuardian
PortGuardian is a lightweight Python tool that detects and alerts on suspicious outbound network connections to untrusted or known-malicious services
Language: Python - Size: 7.81 KB - Last synced at: 25 days ago - Pushed at: 25 days ago - Stars: 0 - Forks: 0
Dhruv0306/Antivirus
A full-stack antivirus application built with Spring Boot and React, following X.800 security architecture. Features real-time file scanning, quarantine management, and system protection with a modern dashboard interface. Built with security-first approach and comprehensive threat detection capabilities.
Language: Java - Size: 1.54 MB - Last synced at: 26 days ago - Pushed at: 26 days ago - Stars: 0 - Forks: 0
thalesgroup-cert/Watcher
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Language: Python - Size: 16.4 MB - Last synced at: 23 days ago - Pushed at: 24 days ago - Stars: 907 - Forks: 132
spyboy-productions/WebSecProbe
Bypass 403
Language: Jupyter Notebook - Size: 2.69 MB - Last synced at: 22 days ago - Pushed at: 3 months ago - Stars: 141 - Forks: 22
Cyb3r-Monk/Threat-Hunting-and-Detection
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
Language: Jupyter Notebook - Size: 407 KB - Last synced at: 27 days ago - Pushed at: about 2 months ago - Stars: 719 - Forks: 103
cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
Size: 382 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 673 - Forks: 73
FrancoGarciaC9701/Attack-Detection-with-Machine-Learning
Language: Python - Size: 2.37 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
GrizonRussell/SOC-Security-Log-Analyzer
SOC Security Log Analyzer: AI-powered threat detection for security professionals.
Language: Python - Size: 12.7 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
jackaduma/SecBERT
pretrained BERT model for cyber security text, learned CyberSecurity Knowledge
Language: Python - Size: 490 KB - Last synced at: 14 days ago - Pushed at: about 2 years ago - Stars: 178 - Forks: 34
ParaCryptid/cybersecurity-network-defense
A next-generation Cybersecurity and Network Defense platform with Zero Trust Architecture, quantum cryptography, and adaptive threat detection for military operations.
Language: Python - Size: 32.2 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
iam-niranjan/SOC-Security-Log-Analyzer
SOC Security Log Analyzer: AI-powered threat detection for security professionals.
Language: Python - Size: 12.7 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
aws-ia/terraform-aws-guardduty
Configure and deploy AWS GuardDuty.
Language: HCL - Size: 839 KB - Last synced at: 28 days ago - Pushed at: 10 months ago - Stars: 9 - Forks: 15
infosecB/Rulehound
An index of publicly available and open-source threat detection rulesets.
Size: 286 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0
franckferman/CassandraCTI
🔮 Collect, process, and automatically distribute Cyber Threat Intelligence from RSS feeds across multiple platforms.
Size: 151 KB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 5 - Forks: 0
ajitashwathr10/dynamic-threat-response
Language: Python - Size: 120 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 2 - Forks: 3
gangula-karthik/AI-Services-in-Analytics
Homelander Level X-Ray Vision for Security – See Everything, Miss Nothing 🚨✈️
Language: Jupyter Notebook - Size: 651 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
aymenmarjan/MISP-Wazuh-Integration
A comprehensive integration solution connecting MISP threat intelligence with Wazuh security monitoring for real-time threat detection. This project provides step-by-step instructions for deploying, configuring, and integrating MISP and Wazuh with Sysmon to automatically detect indicators of compromise (IoCs) in your environment.
Size: 3.54 MB - Last synced at: 29 days ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0
infosecB/detection-as-code
An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
Language: Python - Size: 33.2 KB - Last synced at: 28 days ago - Pushed at: about 3 years ago - Stars: 55 - Forks: 14
paulveillard/cybersecurity-threat-detection
An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat Detection & Hunting.
Size: 138 KB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 41 - Forks: 8
sergio11/zoneguardian
🌐 ZoneGuardian: A powerful tool to analyze DNS configurations, detect vulnerabilities, and generate actionable security reports. 🔒🚀 Safeguard your digital assets with precision and ease!
Language: Python - Size: 1.13 MB - Last synced at: about 1 month ago - Pushed at: about 2 months ago - Stars: 4 - Forks: 0
hydecelestia7/Automated-SOC
This repository provides a comprehensive guide to setting up an Automated Security Operations Center (SOC) using open-source tools like Wazuh, TheHive, and Shuffle.
Size: 40 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0
DataDog/threatest
Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
Language: Go - Size: 381 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 328 - Forks: 23
trendmicro/tm-v1-fs-python-sdk
Trend Vision One File Security Python SDK
Language: Python - Size: 126 KB - Last synced at: 18 days ago - Pushed at: 2 months ago - Stars: 1 - Forks: 1
swisscom/detections 📦
Threat intelligence and threat detection indicators (IOC, IOA)
Language: YARA - Size: 1.47 MB - Last synced at: about 1 hour ago - Pushed at: over 4 years ago - Stars: 52 - Forks: 10
krdmnbrk/atomicgen.io
A simple tool designed to create Atomic Red Team tests with ease.
Language: JavaScript - Size: 722 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 37 - Forks: 4
MuhammadAkhtarNadeem/Wazuh-Elastic-Stack-Anomaly-Detection-System
An AI-powered security monitoring system that performs real-time log analysis and anomaly detection using Wazuh, Elasticsearch, and Kibana. It helps detect and classify security threats efficiently.
Language: Jupyter Notebook - Size: 0 Bytes - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0
trendmicro/tm-v1-fs-nodejs-sdk
Trend Vision One File Security Node.js SDK
Language: TypeScript - Size: 472 KB - Last synced at: 19 days ago - Pushed at: 2 months ago - Stars: 0 - Forks: 1
trendmicro/tm-v1-fs-java-sdk
Trend Vision One File Security Java SDK
Language: Java - Size: 96.7 KB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 1 - Forks: 0
trendmicro/tm-v1-fs-golang-sdk
Trend Vision One File Security Go SDK
Language: Go - Size: 75.2 KB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 2 - Forks: 0
mthcht/ThreatHunting-Keywords-sigma-rules
Sigma detection rules for hunting with the threathunting-keywords project
Language: Python - Size: 176 MB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 54 - Forks: 7
sloopstash/kickstart-elk
Collect Telemetry data from a variety of platforms, workloads, and services to implement Observability using Elastic (ELK) stack.
Language: Dockerfile - Size: 191 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 7 - Forks: 31
khulnasoft/osinsight
🔍 Production-ready detection & response queries for osquery 🛡️ Boost endpoint monitoring, detect threats 🚨, and streamline incident response ⚡
Language: Makefile - Size: 3.15 MB - Last synced at: 7 days ago - Pushed at: 20 days ago - Stars: 0 - Forks: 1
onder7/Real-Time-Threat-Detection
Python ile Gelişmiş Siber Güvenlik İzleme Sistemi | Real-Time Threat Detection, Network Traffic Analysis, Log Monitoring & AI-Driven Alerts
Language: Python - Size: 19.5 KB - Last synced at: 2 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
MohamedMostafa010/SecurePortalModeling
This repository contains my first threat modeling project, focusing on a university financial system. It includes an online DFD, a detailed threat model created using Microsoft Threat Modeling Tool 2016, and an attack tree analysis for a specific identified threat.
Size: 5.57 MB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
frknaykc/Database-Dragon
A comprehensive repository for malware analysis and threat intelligence, including Cobalt Strike Beacon configurations, YARA rules, IOCs, Suricata rules, and malware samples to support cybersecurity efforts.
Language: YARA - Size: 171 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 6 - Forks: 0
tashi-2004/Apache-Hadoop-Spark-Hive-CyberAnalytics
This project utilizes Apache Hadoop, Hive, and PySpark to process and analyze the UNSW-NB15 dataset, enabling advanced query analysis, machine learning modeling, and visualization. The project demonstrates efficient data ingestion, processing, and predictive analytics for network security insights.
Language: Jupyter Notebook - Size: 2.62 MB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
zcyberseclab/zscan
A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.
Language: Go - Size: 32.2 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 37 - Forks: 2
MaheshShukla1/SOC-Analyst-Notes
Enhance your cybersecurity skills with comprehensive notes for SOC Analysts. Dive into security operations, incident response, threat hunting, and practical examples to bolster your expertise. Access valuable resources to level up your cybersecurity game on my GitHub repository.
Size: 49.8 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 19 - Forks: 4
jonrau1/SyntheticSun
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
Language: Python - Size: 58 MB - Last synced at: about 1 month ago - Pushed at: almost 4 years ago - Stars: 77 - Forks: 16
BADGUIDS/badguids.github.io
Collection of bad GUID strings used by offensive tools
Language: HTML - Size: 319 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
lr2t9iz/threat-detection-rules
CyberThreat Detection
Language: YARA - Size: 9.77 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 0
patternex/awesome-ml-for-threat-detection
A curated list of resources to deep dive into the intersection of applied machine learning and threat detection.
Size: 46.9 KB - Last synced at: 4 days ago - Pushed at: over 4 years ago - Stars: 19 - Forks: 1
wisepythagoras/honeyshell
An SSH honeypot written entirely in Go.
Language: Go - Size: 104 KB - Last synced at: 26 days ago - Pushed at: 4 months ago - Stars: 13 - Forks: 2
justingoncalves34/Cybersecurity_Journey
Size: 14.1 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 2
spmedia/Telegram-Channel-Joiner
A python bot that uses the Pyrogram API Framework to take a list of Telegram channels and groups and joins them.
Language: Python - Size: 4.75 MB - Last synced at: about 6 hours ago - Pushed at: 9 months ago - Stars: 1 - Forks: 2
sequint/kernel-anomaly-detector 📦
A kernel module for monitoring system processes and detecting anomalies as potential malware threats based on CPU and memory usage
Language: C - Size: 34.2 KB - Last synced at: about 1 month ago - Pushed at: 5 months ago - Stars: 0 - Forks: 1
DrPwner/FortiLucene
FortiLucene is a Web UI Program Interface that facilitates the FortiEDR Lucene Syntax Query Language
Language: JavaScript - Size: 123 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0
Loginsoft-LLC/Linux-Exploit-Detection
Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
Language: Open Policy Agent - Size: 67.4 KB - Last synced at: 5 months ago - Pushed at: over 1 year ago - Stars: 21 - Forks: 1
Marin-Kitagawa/MalwareDB-Builder
Language: Rust - Size: 0 Bytes - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0
nianticlabs/venator
A flexible threat detection platform that simplifies rule management and deployment using K8s CronJob and Helm, but can also run standalone or with other job schedulers like Nomad.
Language: Go - Size: 356 KB - Last synced at: 6 months ago - Pushed at: 7 months ago - Stars: 353 - Forks: 19
0xN3utr0n/Kanis
Advanced threat detection solution for Linux.
Language: Go - Size: 151 KB - Last synced at: about 1 month ago - Pushed at: over 4 years ago - Stars: 36 - Forks: 4
MFMokbel/Crawlector
Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
Size: 287 KB - Last synced at: 6 months ago - Pushed at: over 1 year ago - Stars: 125 - Forks: 10
Loginsoft-LLC/threat-detection-rules
Threat Detection & Anomaly Detection rules for popular open-source components
Size: 104 KB - Last synced at: 5 months ago - Pushed at: almost 3 years ago - Stars: 50 - Forks: 11
izm1chael/wuodan
Wuodan is a command-line tool designed for efficiently searching through files and directories for strings or regular expressions
Language: Python - Size: 19.5 KB - Last synced at: about 8 hours ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0
AreejFatimaz/ThreatGuard-Advanced-Threat-Detection-System
ThreatGuard is an advanced threat detection system that utilizes the CICIDS 2017 dataset for network traffic analysis and anomaly detection.
Language: Python - Size: 16.8 MB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0
Master-s-Thesis-IPFIX/malfix Fork of stamparm/maltrail
Maltrail - but IPFIX Infused
Language: Python - Size: 303 MB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0
domgolonka/foretoken
A blazing fast, highly customizable, modern-day defence tool using (in memory) SQL & REST/gRPC protocols.
Language: Go - Size: 1.62 MB - Last synced at: about 1 month ago - Pushed at: about 1 year ago - Stars: 20 - Forks: 2
ns7523/Threat-Detection-in-IoT
An intelligent approach to improving the performance of Threat detection in IOT
Language: HTML - Size: 7.63 MB - Last synced at: 10 months ago - Pushed at: 10 months ago - Stars: 1 - Forks: 0
scrymastic/edr-server
An EDR server designed to monitor, detect, and respond to threats on network endpoints.
Language: Python - Size: 3.76 MB - Last synced at: 3 months ago - Pushed at: 10 months ago - Stars: 0 - Forks: 0
HarishHary/blink
Detection engine at scale using Apache Beam, Apache Flink, Kubernetes
Language: Go - Size: 8.13 MB - Last synced at: 6 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0
MaheshShukla1/Snort-IDS-Configuration-Rules-and-Examples
This repository provides comprehensive guides, configurations, rules, and practical examples for Snort, the open-source intrusion detection system (IDS). Ideal for cybersecurity professionals and enthusiasts looking to enhance their network security skills.
Size: 24.4 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 1 - Forks: 0
CodeByHarri/Sigma2KQL
Sigma Queries turned into KQL for Defender using pysigma
Size: 753 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 5 - Forks: 2
wesellis/Defender-for-Cloud-Security-Playbooks
A collection of playbooks for responding to security incidents using Microsoft Defender for Cloud, including detection, investigation, and mitigation steps.
Size: 0 Bytes - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0
Red-Labs-Cloud/Threat-Intelligence-Lab
The Threat-Intelligence-Lab is a comprehensive platform that empowers organizations to proactively identify, analyze, and combat cyber threats. We provide real-time threat intelligence, advanced threat analysis tools, and expert guidance to help you stay ahead of the curve and protect your valuable data.
Size: 268 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0
