Explore Projects
Discover 33 open source projects
Showing 1-20 of 33 projects
OISF/suricata
Suricata is a powerful network security monitoring engine for intrusion detection and prevention.
elceef/dnstwist
A Python library for detecting homograph phishing attacks, typo squatting, and brand impersonation through domain name permutation.
SwiftOnSecurity/sysmon-config
High-quality Sysmon configuration template for advanced Windows security monitoring and threat hunting
0x4D31/awesome-threat-detection
A curated list of awesome resources for threat detection and incident response.
OTRF/ThreatHunter-Playbook
Open-source threat hunting playbook for detection development efficiency
intelowlproject/IntelOwl
IntelOwl: A comprehensive threat intelligence management platform for security professionals.
Security-Onion-Solutions/securityonion
Security Onion is an open-source security monitoring and threat hunting platform.
Cyb3rWard0g/HELK
An open-source threat hunting platform built on the ELK stack for security researchers and analysts.
WithSecureLabs/chainsaw
A Rust-based tool for rapidly searching and hunting through Windows forensic artifacts.
teler-sh/teler
Teler is a real-time HTTP intrusion detection system written in Go for analyzing logs and detecting threats.
Yamato-Security/hayabusa
Hayabusa is a Rust-based threat hunting and forensics timeline generator for Windows event logs.
olafhartong/sysmon-modular
A modular sysmon configuration repository for security monitoring and threat hunting.
blackorbird/APT_REPORT
A repository that collects interesting APT reports and special IOCs for cybersecurity researchers and threat hunters.
Neo23x0/signature-base
YARA signature database for threat detection, malware analysis, and security scanning
sbousseaden/EVTX-ATTACK-SAMPLES
A curated collection of Windows Event Log samples for security research and threat hunting.
elastic/detection-rules
An open-source library for creating security detection rules and threat hunting content.
yeti-platform/yeti
An open-source threat intelligence platform for cybersecurity professionals and researchers.
AmnestyTech/investigations
This repository provides indicators of compromise from Amnesty International's cyber investigations.
Bert-JanP/Hunting-Queries-Detection-Rules
Collection of KQL queries for Advanced Hunting, Detection, and Threat Hunting in Azure Sentinel and Defender for Endpoint.
StamusNetworks/Clear-NDR-ISO
A Suricata-based network detection and response (NDR) distribution for security monitoring and threat hunting.
Stay in the loop
Get weekly updates on trending AI coding tools and projects.