elastalert by Yelp

Easy & Flexible Alerting With ElasticSearch

updated at Nov. 16, 2024, 7:20 p.m.

244 +0

7,998 +2

1,734 +0

sigma by SigmaHQ

Main Sigma Rule Repository

updated at Nov. 16, 2024, 4:32 p.m.

346 +1

8,369 +32

2,198 -2

Hunting-Queries-Detection-Rules by Bert-JanP

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

updated at Nov. 16, 2024, 12:03 p.m.

64 +1

1,258 +8

233 +0

security_content by splunk

Splunk Security Content

updated at Nov. 15, 2024, 6:36 a.m.

71 +0

1,293 +1

362 +1

security-analytics by GoogleCloudPlatform

Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud

updated at Nov. 14, 2024, 12:11 p.m.

27 +0

325 +1

69 +1

security-stack-mappings by center-for-threat-informed-defense

🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.

updated at Nov. 14, 2024, 12:11 p.m.

86 -2

380 +0

63 -1

detection-rules by chronicle

Collection of YARA-L 2.0 sample rules for the Chronicle Detection API

updated at Nov. 6, 2024, 7:30 a.m.

38 +0

316 +0

76 +1

salo by splunk

Synthetic Adversarial Log Objects: A Framework for synthentic log generation

updated at Sept. 21, 2024, 1:39 p.m.

8 +0

77 +0

8 +0