Living Off the Living Off the Land

Awesome Kubernetes (K8s) Threat Detection

A curated list of resources about detecting threats and defending Kubernetes systems.

Detection and Response Pipeline

✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The purpose is to create a reference hub for designing effective threat detection and response pipelines. 👷 🏗

Splunk ES Correlation Searches Best Practices | OpsTune

Splunk code (SPL) for serious threat hunters and detection engineers.

DETT&CT: MAPPING YOUR BLUE TEAM TO MITRE ATT&CK™

Outlines a methodology measuring security data visibility and detection coverage against the MITRE ATT&CK framework