Windows Events Attack Samples
-
Updated
Jan 24, 2023 - HTML
#
detection-engineering
Here are 8 public repositories matching this topic...
lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
-
Updated
Jun 2, 2025 - HTML
Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools, logging configuration and best practices, event log references, resources, labs, data manipulation online tools, blogs, newsletters, good reads, books, trainings, podcasts, videos and twitter/x accounts.
-
Updated
Nov 25, 2025 - HTML
simple webapp for converting sigma rules into siem queries using the pySigma library
-
Updated
Sep 1, 2023 - HTML
Sentrilite is a Threat Detection-As-Code (DAC) for Hybrid/Multi Cloud Infrasturcture
linux kubernetes security security-audit cybersecurity threat-hunting ebpf observability security-tools threat-intelligence detection-rules edr threat-detection detection-engineering detection-as-code
-
Updated
Dec 10, 2025 - HTML
DNS sourced Mad Lib Game
-
Updated
Jul 22, 2025 - HTML
🚀 Automate Sigma rule conversion to KQL and Terraform for Microsoft Sentinel, streamlining detection management with infrastructure-as-code.
python yaml devops terraform cybersecurity threat-hunting sigma mitre-attack kql detection-engineering microsoftsentinel
-
Updated
Dec 17, 2025 - HTML
Sentrilite EDR/XDR for Windows: Detection-As-Code, Observability, Security & Live Telemetry with AI/LLM Insights
security monitoring xdr siem observability security-tools edr detection-engineering cybersecurity-tools detection-as-code
-
Updated
Dec 15, 2025 - HTML
Improve this page
Add a description, image, and links to the detection-engineering topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the detection-engineering topic, visit your repo's landing page and select "manage topics."