infosecB

followers

following

stars

Brendan Chamberlain's repositories

awesome-detection-engineering

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.

CC0-1.0559 210

LOOBins

Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.

Language:PythonGPL-3.0391 10 62

detection-as-code

An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.

Language:PythonGPL-3.044 3 1

generate_attacknav_layer

A Python CLI utility for quickly converting a list or text file of MITRE ATT&CK technique IDs to a MITRE ATT&CK Navigator layer .JSON file.

Language:PythonMIT3 20

awesome-threat-detection

A curated list of awesome threat detection and hunting resources

2 10

auditd-ripper

Python CLI for normalizing, aggregrating, and decoding auditd logs.

Language:Python1 10

security_content

Splunk Security Content

Language:PythonApache-2.01 10

pywordle

Language:Python020

advent-of-detect-2024

An detection engineering-specific variant of advent of code.

010

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

Language:PowerShellMIT000

attack-navigator

Web app that provides basic navigation and annotation of ATT&CK matrices

Language:TypeScriptApache-2.0010

awesome

😎 Awesome lists about all kinds of interesting topics

CC0-1.0000

docker-splunk

Splunk Docker GitHub Repository

Language:Python010

full-stack-fastapi-template

Full stack, modern web application template. Using FastAPI, React, SQLModel, PostgreSQL, Docker, GitHub Actions, automatic HTTPS and more.

MIT000

galah

Galah: an LLM-powered web honeypot using the OpenAI API.

Language:GoApache-2.0000

generative-ai-for-beginners

12 Lessons, Get Started Building with Generative AI 🔗 https://microsoft.github.io/generative-ai-for-beginners/

MIT000

GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

GPL-3.0000

guarddog

:snake: :mag: GuardDog is a CLI tool to Identify malicious PyPI and npm packages

Language:PythonApache-2.0000

infosecb

010

infosecb.github.io

Language:HTML010

ipify-me

Python module/cli to get public IP address using ipify's free API.

Language:PythonNOASSERTION020

microsearch

MIT000

mitreattack-python

A python module for working with ATT&CK

Language:PythonApache-2.0000

ocsf-schema

OCSF Schema

Apache-2.0000

pydantic-attack

Language:Python010

pySigma

Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)

Language:PythonLGPL-2.1000

schemastore

A collection of JSON schema files including full API

Language:JavaScriptApache-2.0000

shields

Concise, consistent, and legible badges in SVG and raster format

Language:JavaScriptCC0-1.0010

spark

Apache Spark - A unified analytics engine for large-scale data processing

Language:ScalaApache-2.0010

T480

notes and configs for linux on t480

Language:ShellUnlicense000