Security Operations
Showing 33 of 33 projects
A generic and open signature format for describing log event detections, shareable across SIEM systems.
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
A curated list of tools and resources for digital forensics and incident response (DFIR) teams.
An open-source platform for collecting, storing, sharing, and acting upon cybersecurity threat intelligence and indicators.
A curated list of free, hands-on educational resources for learning cybersecurity through practical exercises and CTF challenges.
An open-source security automation platform (SOAR) built for security professionals, focusing on collaboration and resource sharing.
An agile cybersecurity incident management platform for tracking, reporting, and responding to security incidents.
An agile cybersecurity incident management platform for tracking, reporting, and responding to security incidents.
A forensics intelligence platform that bridges CTI and DFIR by storing threat intelligence and enabling bulk observable searches and threat-focused analysis.
A collection of ready-to-use KQL queries for threat hunting, detection, and analytics in Microsoft Defender for Endpoint and Azure Sentinel.
An open-source repository of security detections, analytic stories, and response playbooks mapped to MITRE ATT&CK for Splunk Enterprise Security.
A web-based collaborative platform for incident responders to share technical details during cybersecurity investigations.
A curated list of resources, tools, and frameworks for detection engineering in cybersecurity.
A modular vulnerability scanner that checks website security and automatically generates easy-to-read reports for organizations.
A collection of operational incident response cheat sheets covering multiple security incident scenarios for CERT teams.
A security feed collection and processing solution for IT security teams using message queuing protocols.
AWS incident response runbook templates for DoS/DDoS attacks, credential leakage, and S3 bucket access incidents.
A curated awesome list of resources for Security Orchestration, Automation and Response (SOAR) technologies.
A curated collection of public JSON APIs for cybersecurity professionals, covering threat intelligence, malware analysis, and security tools.
An extendable Python tool to extract and aggregate Indicators of Compromise (IOCs) from various threat intelligence feeds.
A framework for developing rigorous, documented alerting and detection strategies to improve incident response efficacy.
A data pipeline engine for security teams to collect, transform, enrich, and route telemetry data at scale.
Default playbooks and custom functions for Splunk SOAR (formerly Phantom) security orchestration and automation platform.
A self-hosted incident response platform that automates alert handling and ticket management for security teams.
A collection of example YARA-L detection rules and dashboards for Google Security Operations (SecOps).
A collection of built-in detection rules and policies for Panther, a modern SIEM, enabling security monitoring as code.
A lightweight investigation notebook for security analysts to document and track threat intelligence.
A collection of prescriptive recipes for preparing and applying countermeasures against cyber threats and attacks.
A community-driven collection of pre-built security analytics queries and rules for auditing and threat detection in Google Cloud.
A curated reference hub of tools and real-world examples for designing effective threat detection and response pipelines.
A collection of Splunk SPL queries and prototypes for threat hunting and detection engineering.
A cyber security incident response management system and knowledge base designed to coordinate team efforts and capture team knowledge.
An open-source repository of cybersecurity detection rules and threat identifiers for security teams to enhance threat detection capabilities.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.