security-operations
There are 26 repositories under security-operations topic.
satan1a/TheRoadOfSO
学习安全运营的记录 | The knowledge base of security operation
GoogleCloudPlatform/security-analytics
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
Kirtar22/Litmus_Test
Detecting ATT&CK techniques & tactics for Linux
NVISOsecurity/ee-outliers
Open-source framework to detect outliers in Elasticsearch events
ControlCompass/ControlCompass.github.io
Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
gerardokaztro/cybersecurity-entry-level
Curso para aprender Ciberseguridad desde cero, en español y 100% gratis. Abarca 5 dominios fundamentales que necesitas conocer para poder dar tus primeros pasos en este apasionante mundo.
NP558565/ISC2-CC-Cybersecurity-Study-Material
My learning, tutorials on Cybersecurity
SHolzhauer/elastic-tip
Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common format into Elasticsearch with the main goal of being used by the Security solution.
alexfrancow/iSOC
:bar_chart: Deploy an "illegal" SOC to manage vulnerabilities on your city servers in minutes.
0xThiebaut/dnsbeat
An Elasticsearch Beat to monitor DNS zones through customizable zone transfers.
H3llKa1ser/SOC-Assistant-Guide
A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.
austinsonger/Interviewing
Interviewing Help for Information Security Jobs (With Answers)
Balzu/Security-Events-Explorer
A user-friendly and powerful tool to analyze Windows Security Events
databricks-industry-solutions/incident-investigation-using-graphistry
Visual analytics using Databricks & Graphistry for cybersecurity investigations
austinsonger/Intel-Hash
Takes a Onion URL and Hashes it and compares it against blacklisted hashed onion URLS
Chinuaoku/ISC2-Certified-in-Cybersecurity
This is a cybersecurity certification that proves that an individual have the fundamental knowledge, skills and ability for an entry-level or junior-level cybersecurity role. It is ANAB accredited, ISO/IEC STANDARD 17024.
SOC-101/SOC-Introduction
Introduction to SOC and related terminologies.
gabrielcurrie/conference-talks
Hosting slides for conference talks I've delivered.
Kr1shnam00rth1/Splunk
Splunk Labs
Micahs0Day/Micahs0Day.github.io
Micah's 0-Day - Cybersecurity Blog
PauldeLove/finalproject_CIP
This is my Stanford University Code in Place final project code. It is a visualization of some of part of the operations data. The code is written in python.
ptamar/Mentoriot
A comprehensive cybersecurity project focusing on the implementation and analysis of SIEM systems and SOC operations. Includes practical applications of security techniques and vulnerability assessments.
tymyrddin/blue
Blue team
Jackmundo/sentinel4beginners
This project was designed to help beginners or those new to setting up MS Sentinel with setting up your own little home lab (on the free trial version, can do this with the $200 credit provided by Microsoft)
sparksis/sops
Simple and flexible tool for managing secrets
tylerbcrawford/vsi-splunk-siem
Developed a custom SIEM solution using Splunk for Virtual Space Industries. As part of a team of three SOC analysts, monitored critical systems, detecting simulated cyberattacks like brute-force logins and SQL injections. Provided recommendations to enhance security posture, demonstrating expertise in security monitoring and incident response.