threatdetection

Here are 28 public repositories matching this topic...

Juanjo9471 / KQL-Queries-Defender-Sentinel

🔍 Discover KQL queries designed for Microsoft Sentinel and Defender XDR to enhance your security monitoring and incident response capabilities.

microsoft cybersecurity defender threat-hunting misp hunting vulnerability-management mde blueteam zero-day mitre-attack threat-detection kusto threathunting detection-engineering threatdetection defender-for-endpoint microsoft-365-defender

Updated Nov 8, 2025

jaraguayo / KQL-Queries

Star

KQL-Queries 🐙 provides ready KQL scripts for Microsoft Defender XDR threat hunting, helping security teams detect, investigate, and respond to threats.

sentinel dfir misp hunting vulnerability-management mde blueteam mdi mitre-attack securitycenter kusto kusto-language threat-hunt threatdetection microsoft-security microsoft-365-defender microsoft-xdr defenderxdr

Updated Nov 7, 2025

SlimKQL / Hunting-Queries-Detection-Rules

Star

KQL Queries. Microsoft Defender, Microsoft Sentinel

microsoft azure sentinel defender mitre-attack kql threathunting threatdetection defenderxdr

Updated Nov 5, 2025
JavaScript

jarif87 / malware-analysis-and-reverse-engineering

Star

Completed a Malware Analysis and Reverse Engineering project where I analyzed a malware sample in an isolated environment, monitored its behavior, extracted file metadata, and created custom YARA rules and IoCs. Automated reporting with Python streamlined the analysis and improved efficiency.

python automation reverse-engineering malwareanalysis cybersecurity infosec threatdetection

Updated Oct 1, 2025
C#

AndyBallardSecurity / KQL-Queries-Defender-Sentinel

Star

KQL Queries for Microsoft Sentinel and Microsoft Defender XDR

microsoft azure sentinel defender threat-hunting mitre mitre-attack kql threatdetection defenderxdr kql-threathunting kql-queries

Updated Sep 13, 2025

aws-ia / terraform-aws-guardduty

Star

Configure and deploy AWS GuardDuty.

aws security aws-security security-tools threat-detection guardduty aws-guardduty threatdetection tdir

Updated Sep 9, 2025
HCL

OT-CLOUD-KIT / terraform-aws-guardduty

Star

AWS GuardDuty service configuration and deployment

aws threat-hunting aws-security security-tools guardduty aws-guardduty threatdetection thread-detection

Updated Sep 6, 2025

0xNslabs / mongodb-honeypot

Star

A simple, low-interaction MongoDB honeypot server in Python for easy network traffic monitoring

mongodb canary honeypot twisted mongodb-server deception deception-detection deception-defense simple-honeypot threatdetection

Updated May 28, 2025
Python

0xNslabs / postgresql-honeypot

Star

A simple, low-interaction PostgreSQL honeypot server in Python for easy network traffic monitoring

canary honeypot postgresql twisted deception postgresql-server deception-detection deception-defense simple-honeypot threatdetection

Updated May 27, 2025
Python

0xNslabs / ssh-honeypot

Star

A simple, low-interaction SSH honeypot server in Python for easy network traffic monitoring

ssh canary honeypot ssh-server twisted deception ssh-honeypot deception-detection deception-defense simple-honeypot threatdetection

Updated May 27, 2025
Python

0xNslabs / ldap-honeypot

Star

A simple, low-interaction LDAP honeypot server in Python for easy network traffic monitoring

ldap honeypot twisted ldap-server deception deception-detection deception-defense simple-honeypot threatdetection ldaphoneypot

Updated May 27, 2025
Python

0xNslabs / telnet-honeypot

Star

A simple, low-interaction TELNET honeypot server in Python for easy network traffic monitoring

canary honeypot telnet twisted deception telnet-server deception-detection deception-defense simple-honeypot threatdetection telnethoneypot

Updated May 27, 2025
Python

0xNslabs / ftp-honeypot

Star

A simple, low-interaction FTP honeypot server in Python for easy network traffic monitoring

canary ftp honeypot twisted ftp-server deception deception-detection deception-defense simple-honeypot threatdetection ftphoneypot

Updated May 27, 2025
Python

0xNslabs / sip-honeypot

Star

A simple, low-interaction SIP honeypot server in Python for easy network traffic monitoring

sip canary honeypot twisted sip-server deception deception-detection deception-defense simple-honeypot threatdetection siphoneypot

Updated May 27, 2025
Python

0xNslabs / dns-honeypot

Star

A simple, low-interaction DNS honeypot server in Python for easy network traffic monitoring

dns canary honeypot twisted dns-server deception deception-detection deception-defense simple-honeypot threatdetection dnshoneypot

Updated May 27, 2025
Python

0xNslabs / ntp-honeypot

Star

A simple, low-interaction NTP honeypot server in Python for easy network traffic monitoring

honeypot twisted ntp dns-server deception deception-detection deception-defense simple-honeypot threatdetection ntp-servers ntp-honeypot

Updated May 27, 2025
Python

0xNslabs / https-honeypot

Star

A simple, low-interaction HTTPS honeypot server in Python for easy network traffic monitoring

https canary honeypot twisted ssl-certificate https-server deception deception-detection deception-defense simple-honeypot threatdetection

Updated May 27, 2025
Python

0xNslabs / http-honeypot

Star

A simple, low-interaction HTTP honeypot server in Python for easy network traffic monitoring

http canary honeypot twisted http-server deception deception-detection deception-defense simple-honeypot threatdetection

Updated May 27, 2025
Python

hiyaamalik / Self-Healing-AI-for-Network-Security

Star

This is an artificial intelligence (ML and DL) project for network security which works by detecting threats and uses attack classification and then implements self-healing mechanisms

machine-learning deep-learning lstm-model artificial-neural-networks decision-trees attackclassification threatdetection

Updated Mar 25, 2025
Jupyter Notebook

exfil0 / PDFdisarm

Star

Advanced PDF Analysis & Disarm Tool is a robust Python-based utility designed to scan, analyze, and neutralize potentially malicious elements in PDF files.

pdf security analysis malware cybersecurity pyhton3 threatdetection pdfdisarm

Updated Feb 12, 2025
Python

Improve this page

Add a description, image, and links to the threatdetection topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the threatdetection topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

threatdetection

Here are 28 public repositories matching this topic...

Juanjo9471 / KQL-Queries-Defender-Sentinel

jaraguayo / KQL-Queries

SlimKQL / Hunting-Queries-Detection-Rules

jarif87 / malware-analysis-and-reverse-engineering

AndyBallardSecurity / KQL-Queries-Defender-Sentinel

aws-ia / terraform-aws-guardduty

OT-CLOUD-KIT / terraform-aws-guardduty

0xNslabs / mongodb-honeypot

0xNslabs / postgresql-honeypot

0xNslabs / ssh-honeypot

0xNslabs / ldap-honeypot

0xNslabs / telnet-honeypot

0xNslabs / ftp-honeypot

0xNslabs / sip-honeypot

0xNslabs / dns-honeypot

0xNslabs / ntp-honeypot

0xNslabs / https-honeypot

0xNslabs / http-honeypot

hiyaamalik / Self-Healing-AI-for-Network-Security

exfil0 / PDFdisarm

Improve this page

Add this topic to your repo