Starred repositories
☁️ Collaborative Malware Analysis Platform at Scale
Nightingale is to monitoring and alerting what Grafana is to visualization.
Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.
A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, tedious tasks slowing them down. #nsacyber
eBPF-based Networking, Security, and Observability
Utilities to make it easier to use golang.org/x/text/encoding/unicode
Machine management for a container-centric world
TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
Shodan.io connector for Phantom Cyber Security Orchestration
A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
Open-Source Unified Vulnerability Management, DevSecOps & ASPM
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
用于检测 node 项目的第三方依赖组件是否存在安全漏洞。
A cloud-native open-source unified multi-cloud and hybrid-cloud platform. 开源、云原生的多云管理及混合云融合平台
Second Version of The GoBot Botnet, But more advanced.
Win32 API bindings for the Go programming language.
INACTIVE - http://mzl.la/ghe-archive - go package for interfacing with Linux audit
A Linux Auditd rule set mapped to MITRE's Attack Framework
An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events…
Sysmon configuration file template with default high-quality event tracing
Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.