armory
Detection framework
A collection of threat detection methodologies and tools to help security teams identify and respond to emerging threats.
Anvilogic Forge
86 stars
5 watching
5 forks
last commit: 7 days ago
Linked from 1 awesome list
detectiondetection-engineeringsnowflakesplunkthreat-hunting
infosecb/awesome-detection-engineeringRelated projects:
| Repository | Description | Stars |
|---|---|---|
 sk4la/plast | A modular threat-hunting tool framework for detecting indicators of compromise in incident-response operations. | 17 |
 adampetcher/fcf | A framework for machine-checked proofs of cryptography in the computational model. | 48 |
 palantir/alerting-detection-strategy-framework | A framework for developing and managing alerting strategies to improve incident response | 689 |
 tarrencev/forge-optimism | A collection of helpful contracts for use with forge and foundry to simplify testing on the Optimism network. | 56 |
 abertaymachinelearninggroup/cryptoknight | A framework for classifying cryptographic primitives using dynamic binary instrumentation and deep learning | 38 |
 logrhythm-labs/pie | A framework that detects and responds to phishing attacks by analyzing email contents, attachments, and links. | 180 |
 jingzhang617/cod-rank-localize-and-segment | Develops a system to detect, segment, and rank camouflaged objects in images. | 74 |
 mailtoharshit/forcesniffer.js | A JavaScript library for detecting various device types and browsers on client-side | 12 |
 anthemtotheego/detect-hooks | A tool that attempts to detect userland API hooks in place by AV/EDR | 147 |
 neuralegion/wafalyzer | A utility that analyzes HTTP responses to detect the presence of firewalls in web applications. | 34 |
 threathuntingproject/threathunting | An informational repository providing resources and knowledge for detecting adversaries in IT environments. | 1,722 |
 p4t12ick/ypsilon | An automated testing environment for security use cases using real malware and various tools | 165 |
 cred-club/artif | An advanced threat intelligence framework that integrates real-time IP reputation and historical data analysis to identify malicious traffic | 236 |
 hisorange/browser-detect | A package to identify user browser and device details using multiple well-tested packages. | 1,090 |
 juxt/bolt | An integrated security system for Clojure applications based on modular components | 123 |