infosecB

followers

following

stars

Brendan Chamberlain's repositories

awesome-detection-engineering

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.

CC0-1.071200

LOOBins

Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by threat actors for malicious purposes.

Language:PythonGPL-3.039700

awesome

😎 Awesome lists about all kinds of interesting topics

CC0-1.0000

galah

Galah: an LLM-powered web honeypot using the OpenAI API.

Language:GoApache-2.0000

full-stack-fastapi-template

Full stack, modern web application template. Using FastAPI, React, SQLModel, PostgreSQL, Docker, GitHub Actions, automatic HTTPS and more.

MIT000

GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

GPL-3.0000

microsearch

MIT000

auditd-ripper

Python CLI for normalizing, aggregrating, and decoding auditd logs.

Language:Python100

generative-ai-for-beginners

12 Lessons, Get Started Building with Generative AI 🔗 https://microsoft.github.io/generative-ai-for-beginners/

MIT000

advent-of-detect-2024

An detection engineering-specific variant of advent of code.

000

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

MIT000

guarddog

:snake: :mag: GuardDog is a CLI tool to Identify malicious PyPI and npm packages

Apache-2.0000

T480

notes and configs for linux on t480

Unlicense000

pySigma

Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)

LGPL-2.1000

schemastore

A collection of JSON schema files including full API

Apache-2.0000

infosecb

000

infosecb.github.io

Language:HTML000

pydantic-attack

Language:Python000

mitreattack-python

A python module for working with ATT&CK

Language:PythonApache-2.0000

ocsf-schema

OCSF Schema

Apache-2.0000

detection-as-code

An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.

Language:PythonGPL-3.04500

awesome-threat-detection

A curated list of awesome threat detection and hunting resources

200

pywordle

Language:Python000

generate_attacknav_layer

A Python CLI utility for quickly converting a list or text file of MITRE ATT&CK technique IDs to a MITRE ATT&CK Navigator layer .JSON file.

Language:PythonMIT300

spark

Apache Spark - A unified analytics engine for large-scale data processing

Apache-2.0000

attack-navigator

Web app that provides basic navigation and annotation of ATT&CK matrices

Language:TypeScriptApache-2.0000

security_content

Splunk Security Content

Language:PythonApache-2.0100

docker-splunk

Splunk Docker GitHub Repository

000

ipify-me

Python module/cli to get public IP address using ipify's free API.

Language:PythonNOASSERTION000

shields

Concise, consistent, and legible badges in SVG and raster format

CC0-1.0000