KQL
awesome-threat-detection
KQL | awesome-threat-detection | |
---|---|---|
5 | 5 | |
397 | 3,353 | |
- | - | |
9.6 | 2.6 | |
about 1 month ago | 3 months ago | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
KQL
awesome-threat-detection
- Career growth in cybersecurity
- 0x4D31/awesome-threat-detection: A curated list of awesome threat detection and hunting resources
- GitHub - 0x4D31/awesome-threat-detection: A curated list of awesome threat detection and hunting resources
-
Threat Hunting resources for query based hunting? Open source query libraries?
Here's a git repo on a pretty tight curated list of threat hunting and detection resources, I bet you'd find something useful on there.
-
Alert for ransomware that bypassed endpoint protection
Some additional resources can be found at https://github.com/0x4D31/awesome-threat-detection
What are some alternatives?
Hunting-Queries-Detection-Rules - KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
Raccine - A Simple Ransomware Vaccine
Awesome-CobaltStrike-Defence - Defences against Cobalt Strike
awesome-detection-engineering - Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
Purpleteam - Purpleteam scripts simulation & Detection - trigger events for SOC detections
Watcher - Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.