Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
Open-source framework to detect outliers in Elasticsearch events
Write detections, investigate alerts, and query logs from your favorite AI agents
Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common format into Elasticsearch with the main goal of being used by the Security solution.
Intelligent SOC automation framework powered by LangGraph multi-agent workflows for alert triage, correlation, and incident response
Visual analytics using Databricks & Graphistry for cybersecurity investigations
Tiny, practical scripts for IT tasks (files, logs, networks, APIs).
Takes a Onion URL and Hashes it and compares it against blacklisted hashed onion URLS
0-incident is an SOC for cybersecurity.
A comprehensive Python tool that maps malware to MITRE ATT&CK techniques, generates threat intelligence reports, and creates custom red team playbooks. This application fetches the latest MITRE ATT&CK framework data, identifies techniques associated with specific malware, visualizes attack patterns, and provides actionable security recommendations.
Operations Security & Compliance Automated Reporter - Maximize your FREE 400 SCUs with Microsoft Security Copilot
This project focuses on building an AI-driven anomaly detection framework that uses the Isolation Forest algorithm to identify suspicious events in unstructured system log data.
Splunk case manager
Add a description, image, and links to the security-operations topic page so that developers can more easily learn about it.
To associate your repository with the security-operations topic, visit your repo's landing page and select "manage topics."