#

security-detection

Here are 9 public repositories matching this topic...

azure-sentinel-detection-engineering

ibondarenko1 / azure-sentinel-detection-engineering

9 MITRE ATT&CK-mapped KQL detections on a live Microsoft Sentinel + Defender XDR environment (control-plane, endpoint, identity), with a PR-gated Detection-as-Code pipeline (GitHub Actions, OIDC), SOAR playbooks, and a SOC 2 control mapping.

incident-response siem sigma soc soar blue-team azure-security mitre-attack threat-detection kql azure-sentinel detection-engineering microsoft-sentinel detection-as-code security-detection

Updated Jun 14, 2026
Kusto

fnatio213 / iam-authentication-audit-tracker

IAM Authentication Audit Tracker is a Terraform-based AWS security lab that detects IAM login anomalies using CloudTrail, CloudWatch, SNS, and Athena. It integrates tfsec scans through GitHub Actions and demonstrates alerting, audit log analysis, and compliance mapping to NIST 800-53 (AU-6, AC-7) and ISO 27001 A.12.4 using secure IaC

aws athena terraform cloudwatch sns infrastructure-as-code compliance cloudtrail cloud-security iso-27001 audit-logging tfsec nist-800-53 security-detection logging-monitoring

Updated Jun 15, 2026
HCL

Runc9 / iam-authentication-audit-tracker

IAM Authentication Audit Tracker is a Terraform-based AWS security lab that detects IAM login anomalies using CloudTrail, CloudWatch, SNS, and Athena. It integrates tfsec scans through GitHub Actions and demonstrates alerting, audit log analysis, and compliance mapping to NIST 800-53 (AU-6, AC-7) and ISO 27001 A.12.4 using secure IaC

aws athena terraform cloudwatch sns ci-cd infrastructure-as-code compliance cloudtrail cloud-security iso-27001 audit-logging github-actions tfsec nist-800-53 security-detection logging-monitoring

Updated Aug 2, 2025
HCL

aguztynbassi / SID

The MITRE ATT&CK Alerts For log point

mitre-attack promptbook security-detection copilot-for-security

Updated Jun 14, 2026

rohitdhamija / mcp-security-scanner

A Model Context Protocol (MCP) server for automated security scanning and live validation of LLM API keys and cloud endpoints

mcp openai security-scanner devsecops azure-openai anthropic security-detection mcp-server fastmcp

Updated Jan 2, 2026
Python

djbpm / linux-attacker-timeline

Modular Linux attack timeline detection engine with MITRE ATT&CK mapping and CI-backed test suite.

python encryption cybersecurity trending vulnerability kali-linux soc linux-security timeline-analysis blue-team mitre-attack threat-detection detetction detection-engine security-detection

Updated Feb 22, 2026
Python

Harry-Khatri / Malware_detection

Machine learning–based malware detection system with full-stack implementation.

react nodejs python machine-learning malware cybersecurity xgboost classification security-detection fullstack-project

Updated Nov 21, 2025
Python

EggsLeggs / CVE-2025-29927-Testing

Bash script to test if a web app is vulnerable to CVE-2025-29927

security-detection bypass-techniques cve-2025-29927 nextjs-vulnerability

Updated Aug 27, 2025
PowerShell

Wolfidark01 / iam-integration-lab

🔗 Simulate identity federation and access governance with Keycloak and SailPoint IIQ for streamlined security and management.

aws saml oauth2 keycloak iam sns infrastructure-as-code compliance cloudtrail cloud-security audit-logging tfsec identity-federation nist-800-53 access-governance security-detection logging-monitoring sailpoint-iiq

Updated Jun 15, 2026

Improve this page

Add a description, image, and links to the security-detection topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the security-detection topic, visit your repo's landing page and select "manage topics."