elastalert by Yelp

Easy & Flexible Alerting With ElasticSearch

created at Nov. 24, 2014, 7:39 p.m.

247 +0

7,970 -1

1,737 -1

sigma by SigmaHQ

Main Sigma Rule Repository

created at Dec. 24, 2016, 9:48 a.m.

331 +1

7,825 +25

2,119 +1

security_content by splunk

Splunk Security Content

created at Dec. 18, 2018, 9:14 p.m.

65 +1

1,174 +9

333 +1

Hunting-Queries-Detection-Rules by Bert-JanP

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

created at May 30, 2022, 5:28 p.m.

52 +1

1,075 +12

195 +4

security-stack-mappings by center-for-threat-informed-defense

🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.

created at Nov. 18, 2020, 6:48 p.m.

81 +0

376 +2

62 +0

security-analytics by GoogleCloudPlatform

Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud

created at Jan. 11, 2022, 9:47 p.m.

28 +0

300 +0

70 +1

detection-rules by chronicle

Collection of YARA-L 2.0 sample rules for the Chronicle Detection API

created at Jan. 19, 2021, 9:30 p.m.

36 +1

268 +4

61 +2

salo by splunk

Synthetic Adversarial Log Objects: A Framework for synthentic log generation

created at Oct. 26, 2021, 2:10 p.m.

8 +0

72 +0

8 +0