Repositories

jaegeral/security-apis

A collective list of public APIs for use in security. Contributions welcome

983🍴 157SOC & Incident Response
35.4

score

FunnyWolf/agentic-soc-platform

Agentic SOC Platform: A powerful, flexible, open-source, and agent-centric automated security operations platform (AI SOC)

927🍴 154📝 PythonSOC & Incident Response
35.1

score

cyberark/SkyArk

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

912🍴 163📝 PowerShellCloud Infrastructure
35.1

score

nsacyber/Event-Forwarding-Guidance

Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber

888🍴 165📝 PowerShellSOC & Incident Response
35.0

score

edgelesssys/constellation

Constellation is a Kubernetes distribution for confidential computing, securing entire clusters on untrusted infrastructure. Constellation is in maintenance mode. New development continues in Contrast, which provides workload-level confidential computing using Confidential Containers. 👉 https://github.com/edgelesssys/contrast

1,098🍴 62📝 GoContainers & Orchestration
34.9

score

aquasecurity/cloud-security-remediation-guides

Security Remediation Guides

749🍴 182Cloud Infrastructure
34.3

score

stackql/stackql

Query, provision and operate Cloud, SaaS, API and Model Context Protocol (MCP) resources through a unified SQL-based framework for humans and AI agents.

861🍴 80📝 GoCloud Security
34.1

score

threathunters-io/laurel

Transform Linux Audit logs for SIEM usage

837🍴 64📝 RustSOC & Incident Response
33.8

score

tenzir/tenzir

Tenzir is the data pipeline engine for security teams.

743🍴 105📝 C++SOC & Incident Response
33.8

score

Funkmyster/awesome-cloud-security

A curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.

666🍴 130Cloud Security
33.5

score

TonyPhipps/SIEM

SIEM Tactics, Techiques, and Procedures

717🍴 114📝 PowerShellSOC & Incident Response
33.2

score

iknowjason/PurpleCloud

A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4

643🍴 107📝 PythonSOC & Incident Response
33.1

score

HXSecurity/TerraformGoat

TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.

639🍴 94📝 HCLCloud Infrastructure
33.0

score

mthcht/ThreatHunting-Keywords

Awesome list of keywords and artifacts for Threat Hunting sessions

662🍴 77📝 PowerShellSOC & Incident Response
33.0

score

GACWR/OpenUBA

A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [BETA]

491🍴 280📝 PythonBACKEND
32.9

score

mdecrevoisier/EVTX-to-MITRE-Attack

Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.

633🍴 97SOC & Incident Response
32.5

score

utmstack/UTMStack

Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.

573🍴 77📝 TypeScriptSOC & Incident Response
32.3

score

cyberblu3s/CyberBlue

CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis

533🍴 106📝 ShellSOC & Incident Response
32.3

score

runreveal/pql

Pipelined Query Language

703🍴 28📝 GoSOC & Incident Response
32.2

score

opengovern/opensecurity

opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.

699🍴 28📝 TypeScriptCompliance & Governance
32.2

score

PrevPage 25 of 26Next