Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

pretrained BERT model for cyber security text, learned CyberSecurity Knowledge

A toolkit for Security Researchers

ThreatSeeker: Threat Hunting via Windows Event Logs

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.

Sigma detection rules for hunting with the threathunting-keywords project

Threat Detection System using Hybrid (Machine Learning + Lexical Analysis) learning Approach.

opensearch-alerts for threat detection and incident response

A tree-based neural network system for automatic deeper analysis of intrusions.

Reduces security incident response time by 100% (245min→2.4sec) using ML anomaly detection

Traditional methods of threat detection are often insufficient, necessitating the integration of cutting-edge technologies. This code demonstrates how OpenAI's GPT(Generative Pre-trained Transformers) can be utilized for basic level threat detection and entity recognition, enhancing cybersecurity measures. 😎😎 Read full Blog at 👇👇👇

A Python CLI utility for quickly converting a list or text file of MITRE ATT&CK technique IDs to a MITRE ATT&CK Navigator layer .JSON file.

A python bot that uses the Pyrogram API Framework to take a list of Telegram channels and groups and joins them.

XrayVision Benchmark: Benchmarking of X-ray Security Imaging Datasets

Open Domestic Threat Scanner - LLM Threat-Intelligence

veCTIon enriches IOCs by correlating data into a meaningful story: IOC → Malware Family → APT Group → MITRE TTPs. By providing an IOC, veCTIon performs IOC enrichment and threat actor attribution, attempting to provide the most information about an IOC to aid in CTI.

detect phishing URLs to enhance online security and predict potential threats

"Yüklenen log dosyalarını analiz ederek potansiyel güvenlik saldırılarını tespit eden ve görselleştiren Streamlit tabanlı bir araç."

This project is a live network monitoring dashboard that leverages tree-based machine learning algorithms to detect intrusions in real-time. The system uses Flask and Socket.IO for real-time data updates, and Chart.js for data visualization. The dashboard provides various charts to visualize network data and sends notifications for suspicious activ