panther-analysis
SIEM library
A repository containing pre-defined detection rules and policies for security operations at scale.
Built-in Panther detection rules and policies
346 stars
34 watching
174 forks
Language: Python
last commit: 2 months ago
Linked from 2 awesome lists
pythonsecurity
infosecb/awesome-detection-engineering
jatrost/awesome-kubernetes-threat-detectionRelated projects:
| Repository | Description | Stars |
|---|---|---|
 rhinosecuritylabs/security-research | Exploits and security research written by a team of experts | 1,064 |
 papermtn/gitlab-watchman | Detects exposed secrets and personal data in GitLab repositories | 195 |
 pachterlab/sleuth_paper_analysis | A collection of R code to reproduce analyses from the sleuth paper | 16 |
 tonyphipps/siem | A comprehensive resource for developing and implementing an effective Security Information and Event Management (SIEM) system | 595 |
 clong/detectionlab | Automates the creation of a comprehensive security testing environment with various security tooling and logging practices. | 4,662 |
| rhinosecuritylabs/cloud-security-research | Publishing research findings on cloud security vulnerabilities and exploitation techniques | 358 |
 protegeproject/swrlapi | A Java API for working with the SWRL rule and SQWRL query languages | 100 |
 3coresec/automata | Automated tool to detect errors in security monitoring and measure effectiveness of SIEM rules against various behaviors. | 53 |
 griffinaustin/pynance | A lightweight Python library for assembling and analyzing financial data | 317 |
 pyupio/safety | Detects known security vulnerabilities in Python dependencies and provides recommendations for remediation. | 1,758 |
 prody/prody | A Python package for analyzing protein structure and dynamics using various computational methods | 439 |
 alienvault-labs/alienvaultlabs | A collection of experimental projects and tools focused on threat intelligence, security research, and incident response | 515 |
 securityriskadvisors/talr | A repository for collecting and sharing SIEM rules in STIX format for automated translation to Sigma syntax | 90 |
 cycodelabs/raven | Analyzes potential security vulnerabilities in Continuous Integration/Continuous Deployment workflows and repositories. | 634 |
| tonyphipps/meerkat | A collection of PowerShell modules for gathering and analyzing Windows-based endpoint artifacts. | 436 |