-
Updated
Nov 25, 2025 - Python
#
threat-detection
Here are 137 public repositories matching this topic...
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
bigquery security logging gcp google-cloud audit-logs network-analysis chronicle log-analytics network-logs threat-detection security-operations cloud-security-command-center
-
Updated
Jun 12, 2024 - Python
pretrained BERT model for cyber security text, learned CyberSecurity Knowledge
nlp security apt transformers cybersecurity attention threat-hunting deeplearning cyber-security nlp-machine-learning bert threat-analysis security-automation threat-intelligence machine-learning-security cyber-threat-intelligence threat-detection transformer-encoder bert-embeddings deep-learning-security
-
Updated
Apr 28, 2023 - Python
A toolkit for Security Researchers
python osint scanner cybersecurity certificate-transparency infosec threat-hunting malware-analysis webshell threat-analysis threat-intelligence certstream threat-detection opendir defaced
-
Updated
Sep 2, 2019 - Python
ThreatSeeker: Threat Hunting via Windows Event Logs
-
Updated
May 16, 2023 - Python
SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.
aws elasticsearch data-science machine-learning automation kibana serverless geolocation incident-response data-visualization misp aws-serverless aws-security security-automation security-tools threat-intelligence anomaly-detection sagemaker threat-detection guardduty
-
Updated
Jul 8, 2021 - Python
🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
-
Updated
Apr 20, 2025 - Python
Curated collection of cybersecurity tools featured in Black Hat Arsenal events.
awesome osint reverse-engineering cybersecurity awesome-list web-security malware-analysis offensive-security network-security security-tools hacking-tools red-teaming defensive-security threat-detection osint-tool open-source-security blue-teaming blackhat-arsenal
-
Updated
Jul 25, 2025 - Python
An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
-
Updated
Mar 12, 2022 - Python
Sigma detection rules for hunting with the threathunting-keywords project
dfir threat-hunting siem blueteam detection-rules mitre-attack threat-detection threathunting detection-engineering sigma-rules forensicartifacts
-
Updated
Mar 2, 2025 - Python
Wiredigg is a comprehensive network analysis tool with advanced security features designed for network administrators, security professionals, and IT enthusiasts. It provides real-time packet capture, protocol analysis, anomaly detection, and threat identification capabilities in a modern, user-friendly interface.
python open-source gui sysadmin sniffer cybersecurity intrusion-detection network-monitoring network-tools packet-sniffer network-analysis packet-capture network-security security-tools anomaly-detection modern-ui real-time-monitoring threat-detection protocol-analysis
-
Updated
Nov 13, 2025 - Python
Threat Detection System using Hybrid (Machine Learning + Lexical Analysis) learning Approach.
python machine-learning sentiment-analysis anaconda numpy neural-networks lexicon lexical-analysis hidden-layers spyder nltk-library threat-detection
-
Updated
May 30, 2017 - Python
Este proyecto es un simulador de ciberseguridad diseñado para entornos educativos. Permite a estudiantes practicar técnicas de ataque y defensa en un entorno controlado, replicando situaciones reales de ciberseguridad sin riesgo para sistemas en producción.
cybersecurity penetration-testing ids infosec ctf security-training ethical-hacking red-team network-security security-dashboard python-project blue-team security-awareness threat-detection security-education security-practice security-logging security-simulator cybersecurity-lab vulnerable-webapp
-
Updated
Sep 14, 2025 - Python
A Python script to automatically search GitHub for .exe, .com, .pif, .msi, .scr, .bat, .cmd, .dll, .sys, .drv, .ocx, .vbs, .js, .ps1, .hta, .wsf, .lnk, .sh, .py, .zip, .rar, .7z, .tar, .gz, .iso, .docm, .xlsm, .pptm, .apk, .jar files, download them, and scan them for malware using ClamAV and VirusTotal.
reverse-engineering cybersecurity threat-hunting malware-analysis malware-research threat-intelligence threat-detection malware-reports
-
Updated
Nov 25, 2025 - Python
Advanced, async typosquatting and domain threat intelligence scanner. Detects lookalike domains, integrates with URLScan, Doppler, and AWS Secrets Manager. Modern reports, Docker-ready, and security-focused.
-
Updated
Oct 24, 2025 - Python
A Github Action to run Fraim in your CI
security security-audit ai security-vulnerability security-automation security-tools threat-detection security-scan llm
-
Updated
Nov 12, 2025 - Python
A python bot that uses the Pyrogram API Framework to take a list of Telegram channels and groups and joins them.
python osint telegram telegram-bot telegram-api threat-hunting threatintel telegram-bots cti telegrambot threat-intelligence cyber-threat-intelligence threat-detection threathunting pyrogram-bot
-
Updated
Nov 26, 2025 - Python
Intelligent SOC automation framework powered by LangGraph multi-agent workflows for alert triage, correlation, and incident response
python incident-response cybersecurity soc workflow-automation security-orchestration security-automation threat-intelligence ai-agents multi-agent-system threat-detection security-operations alert-triage langchain langgraph
-
Updated
Nov 18, 2025 - Python
A tree-based neural network system for automatic deeper analysis of intrusions.
-
Updated
Apr 9, 2017 - Python
opensearch-alerts for threat detection and incident response
python aws elasticsearch alerts opensource pipeline incident-response alerting cloudtrail okta opensearch use-cases threat-detection opendistro tdir
-
Updated
May 27, 2022 - Python
Improve this page
Add a description, image, and links to the threat-detection topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the threat-detection topic, visit your repo's landing page and select "manage topics."