Top 14 detection-engineering Open-Source Projects
-
Fleet
Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center) (by fleetdm)
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
matano
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
-
Digital-Forensics-Guide
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
-
Open-Source-Security-Guide
Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Project mention: Osquery: An sqlite3 virtual table exposing operating system data to SQL | news.ycombinator.com | 2024-02-25Yo! We're working on the fix. You can track progress here: https://github.com/fleetdm/fleet/issues/17165
sorry thats https://matano.dev
If you're looking to learn on your own, try mikeroyal's digital forensics guide on Github. There's a lot of recommended resources there that'll speed you up. https://github.com/mikeroyal/Digital-Forensics-Guide
There's a ton of valuable resources out there when searching for "detection engineering", beyond that, check https://research.splunk.com/ to get an idea of a structured and contextual approach. Beyond that, check Rob van Os Magma use case framework and any blog you can find on https://correlatedsecurity.com (Jurgen Visser). Last but not least, anything "awesome" on github, e.g. https://github.com/fabacab/awesome-cybersecurity-blueteam
Project mention: Detection Engineering - Responsibilities / Career Growth / Compensation | /r/SecurityCareerAdvice | 2023-06-14Apologies if unclear, I meant the path towards Detection Engineering! I've immersed myself into awesome-detection-engineering and find different perspectives/gems through newsletters such as 'Detection Engineering' by Zack Allen.
more information here: https://github.com/mthcht/ThreatHunting-Keywords
Project mention: A collection of various SIEM rules relating to malware family groups | /r/purpleteamsec | 2023-07-07
detection-engineering related posts
- Webapp for converting sigma detection rules into SIEM queries
- A tool to detect errors early and measure the Effectiveness of SIEM rules against the behaviors that the rule was developed to work against, ensuring that the whole process of data collection, parsing, and query of security data is working properly and alert when things don't work as intended
Index
What are some of the best open-source detection-engineering projects? This list will help you:
Project | Stars | |
---|---|---|
1 | Fleet | 2,132 |
2 | EVTX-ATTACK-SAMPLES | 2,126 |
3 | stratus-red-team | 1,621 |
4 | matano | 1,355 |
5 | Digital-Forensics-Guide | 1,343 |
6 | security_content | 1,136 |
7 | Open-Source-Security-Guide | 850 |
8 | pql | 614 |
9 | awesome-detection-engineering | 551 |
10 | ThreatHunting-Keywords | 337 |
11 | threatest | 304 |
12 | Purpleteam | 122 |
13 | reversinglabs-siem-rules | 58 |
14 | Automata | 48 |
Sponsored