Windows Events Attack Samples
-
Updated
Feb 19, 2022 - HTML
#
detection-engineering
Here are 17 public repositories matching this topic...
aws
security
cloud-security
mitre-attack
adversary-emulation
threat-detection
purple-team
detection-engineering
cloud-native-security
-
Updated
Mar 21, 2022 - Go
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
-
Updated
Feb 4, 2022 - C#
Splunk Security Content
-
Updated
Mar 29, 2022 - Python
Misc Threat Hunting Resources
-
Updated
Oct 26, 2021
attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
-
Updated
Jun 20, 2021 - Python
SIEGMA - Transform Sigma rules into SIEM consumables
-
Updated
Jan 27, 2022 - Python
Resources To Learn And Understand SIGMA Rules
-
Updated
Oct 22, 2021
Automatic detection engineering technical state compliance
-
Updated
Jan 18, 2022 - Python
A list of useful Detection Engineering-related resources.
-
Updated
Mar 27, 2022
Microsoft 365 Advanced Hunting queries written in Kusto Query Language (KQL)
microsoft
security
detection
cybersecurity
defender
threat-hunting
xdr
hunting
cyber-security
kusto
microsoft365
kql
detection-engineering
defender-atp
defender-for-endpoint
-
Updated
Jan 3, 2022
Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
security
intelligence
detection
cybersecurity
infosec
threat-hunting
siem
information-security
soc
red-team
security-tools
threat-intelligence
mitre-attack
red-teaming
security-operations
detection-engineering
-
Updated
Mar 29, 2022 - JavaScript
An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
-
Updated
Mar 12, 2022 - Python
Technical resources and knowledge base for dtection.io
-
Updated
Jun 3, 2021 - Shell
A Python CLI utility for quickly converting a list or text file of MITRE ATT&CK technique IDs to a MITRE ATT&CK Navigator layer .JSON file.
-
Updated
Nov 30, 2021 - Python
Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events
-
Updated
Sep 5, 2021 - PowerShell
Improve this page
Add a description, image, and links to the detection-engineering topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the detection-engineering topic, visit your repo's landing page and select "manage topics."