1252 Open source projects that are alternatives of or similar to SWELF

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

An Advanced Logging Framework develop in flutter that provides quick & simple logging solution.

SIEM Logstash parsing for more than hundred technologies

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

Discover, install, and share napari plugins

Test Blue Team detections without running any attack.

Curated list of awesome cybersecurity companies and solutions.

🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021

Chronos - A static race detector for the go language

A curated list of amazingly awesome Cybersecurity datasets

Automate the creation of a lab environment complete with security tooling and logging best practices

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Microsoft Sentinel SOC Operations

Pushes Sysmon Configs

A Lambda-powered Security Orchestration framework for AWS GuardDuty

Generic Signature Format for SIEM Systems

A reliable, high-performance tool for building observability data pipelines.

CLI for Enterprise Application Access (EAA)

ThePhish: an automated phishing email analysis tool

A humble, and fast, security-oriented HTTP headers analyzer

A curated list of awesome threat detection and hunting resources

A Python toolbox for computer vision research and project

A tiny Node.js microservice to detect the language of a code snippet

A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

A framework for secure and scalable network traffic analysis - https://netcap.io

SIEM Tactics, Techiques, and Procedures

C# based evtx parser with lots of extras

Web Application Security Scanner Framework

A high-performance observability data pipeline.

Graphical Web interface developed to facilitate the use of security information tools.

Malware repository component for samples & static configuration with REST API interface.

Concurrently detect the minimum Python versions needed to run code

SDA is a rich cross-platform tool for reverse engineering that focused firstly on analysis of computer games. I'm trying to create a mix of the Ghidra, Cheat Engine and x64dbg. My tool will combine static and dynamic analysis of programs. Now SDA is being developed.

Game of Thrones hacking CTF (Capture the flag)

Receptive Field Block Net for Accurate and Fast Object Detection, ECCV 2018

Hashes of infamous malware

Julia for optimization simulation and modeling of PowerSystems. Part of the Scalable Integrated Infrastructure Planning Initiative at the National Renewable Energy Lab.

Ansible role to install auditbeat for security monitoring. (Ruleset included)

Android client for LogDNA

A set of tools to work with CIL in .NET applications

This is a package for LiDARTag, described in paper: LiDARTag: A Real-Time Fiducial Tag System for Point Clouds

个人教学 Wiki

These are the notes i have been taking since i started learning about ethical hacking and cybersecurity

No description or website provided.

Orb is a dynamic network observability platform

Prediction or detection of various medical ailments

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

Deploy and maintain Symon through the Splunk Deployment Sever

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

Dataset used in "PlantDoc: A Dataset for Visual Plant Disease Detection" accepted in CODS-COMAD 2020

FindBugs static analysis plugin for sbt.

The AWS Cloudwatch Log Viewer