Crypto Census - A One-Stop-Shop for Crypto Domain Aggregation

Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events

A collection of specific commands used by threat actors, detailing their procedural implementations of tactics and techniques from the MITRE ATT&CK framework.

Cloud-DART is a comprehensive repository that provides Standard Operating Procedures (SOPs), Jupyter Notebooks, and code blocks for detection and response in cloud environments. This repository is designed to assist security professionals in automating and enhancing their cloud security posture.

Updated Sigma2KQL script written by @CodeByHarri + Generating Analytics & Hunting Rules ready for Sentinel Deployment

All-In-One: Purple Teaming Exercises with Open-Source Tools

De-facto parent tenant for Carbon Black Enterprise EDR

Threat Detection Repository - YARA / SIGMA rules

Master Thesis: Development and Evaluation of Software for Forensic Log-Analysis Using Machine Learning and Genetic Programming

Repo for my detection rules in system relative formatting

Detection-as-Code CI/CD pipeline for modern security tools (SIEM, EDR, XDR, ...)

An assortment of resources pertaining to Defender XDR and Microsoft Sentinel, such as KQL hunting queries and workbooks.

Plugins for LogCraft CLI

The collection of YARA rules to perform malware threat hunting and detection.

Machine learning notebooks using cybersecurity data

My Detection Engineering and Threat Hunting (DEATH) Lab.

Resource for all things threat detection

Microsoft Sentinel fork of Adaz 🔧 Deploy customizable Active Directory labs in Azure - automatically.

Jump-start your observability needs with Morio's template hub