security-operations

Open-source platform for IT and security teams with thousands of computers. (Linux, macOS, Windows, ChromeOS, AWS, Google Cloud, Azure, data center, containers, IoT)

学习安全运营的记录 | The knowledge base of security operation

Detecting ATT&CK techniques & tactics for Linux

Open-source framework to detect outliers in Elasticsearch events

Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques

Curso para aprender Ciberseguridad desde cero, en español y 100% gratis. Abarca 5 dominios fundamentales que necesitas conocer para poder dar tus primeros pasos en este apasionante mundo.

Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common format into Elasticsearch with the main goal of being used by the Security solution.

📊 Deploy an "illegal" SOC to manage vulnerabilities on your city servers in minutes.

An Elasticsearch Beat to monitor DNS zones through customizable zone transfers.

Security Operations Center stack via docker-compose using only open source solutions

A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations.

A user-friendly and powerful tool to analyze Windows Security Events

Interviewing Help for Information Security Jobs (With Answers)

Visual analytics using Databricks & Graphistry for cybersecurity investigations

Introduction to SOC and related terminologies.

Takes a Onion URL and Hashes it and compares it against blacklisted hashed onion URLS

Blue team

Hosting slides for conference talks I've delivered.

Micah's 0-Day - Cybersecurity Blog