Kusto Query Language is a simple and productive language for querying Big Data.

REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.

A platform for extracting and shipping security value from your data lake to Sentinel.

LogAI - An open-source library for log analytics and intelligence

A machine learning toolkit for log parsing [ICSE'19, DSN'16]

A collection of helpful blue team resources

Cyber Analytics Repository

This repository contains a hand-curated resources for Prompt Engineering with a focus on Generative Pre-trained Transformer (GPT), ChatGPT, PaLM etc

🎨 Diagram as Code for prototyping cloud system architectures

A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

OCSF Schema

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat hunting rules.

Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flow…

Bluetooth to mqtt gateway for Xiaomi Mi plant sensors

The 3C Portfolio Manager is an essential addon to your 3Commas experience. It enables you to manage your DCA bots with greater analytics, real-time alerting, and tons of additional features.

Scraper voor hypotheekwebsite

A python utility for downloading Common Crawl data

High speed/Low cost CommonCrawl RegExp in Node.js

A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.

A PE and MACHO parser for osquery!

an awesome list of honeypot resources

Threat Hunting & Incident Investigation with Osquery

19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNE…

30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, si…

ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)

Online hash checker for Virustotal and other services