{"id":15152062,"url":"https://github.com/elastic/security-research","last_synced_at":"2025-09-29T23:30:54.659Z","repository":{"id":43273494,"uuid":"444963208","full_name":"elastic/security-research","owner":"elastic","description":"The Elastic Security Research team produces public-facing content, in the way of summary blogs, detailed releases, and artifacts; articulating both adversary campaign activities and threat detection steps that can be leveraged to frustrate adversary goals.","archived":true,"fork":false,"pushed_at":"2022-06-07T03:09:56.000Z","size":61635,"stargazers_count":9,"open_issues_count":1,"forks_count":2,"subscribers_count":5,"default_branch":"main","last_synced_at":"2024-09-22T23:04:03.577Z","etag":null,"topics":["blog","cybersecurity","elastic","elasticstack","malware-research","publications","threat-research","tools","whitepapers"],"latest_commit_sha":null,"homepage":"https://elastic.co/security-labs","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/elastic.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2022-01-05T22:05:31.000Z","updated_at":"2023-12-13T01:19:23.000Z","dependencies_parsed_at":"2022-09-06T07:53:35.906Z","dependency_job_id":null,"html_url":"https://github.com/elastic/security-research","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/elastic%2Fsecurity-research","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/elastic%2Fsecurity-research/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/elastic%2Fsecurity-research/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/elastic%2Fsecurity-research/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/elastic","download_url":"https://codeload.github.com/elastic/security-research/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":219874707,"owners_count":16554610,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["blog","cybersecurity","elastic","elasticstack","malware-research","publications","threat-research","tools","whitepapers"],"created_at":"2024-09-26T15:41:44.520Z","updated_at":"2025-09-29T23:30:44.651Z","avatar_url":"https://github.com/elastic.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Elastic Security Research\n\n**This site has been archived**  \nThis site was stood up on a temporary basis as a way to provide threat research to the community.\n\nThe popularity of this research has led to the release of Elastic Security Labs.\n\nAll research and tools, previous and future, is available on the Elastic Security Labs site **https://elastic.co/security-labs**.\n\n---\n\nThe Elastic Security Research team pairs research on emerging threats with analysis of strategic, operational, and\ntactical adversary objectives.\n\nThe team produces public-facing content, in the way of summary blogs, detailed releases, and artifacts; articulating\nboth adversary campaign activities and threat detection steps that can be leveraged to frustrate adversary goals.\n\nThe team observes the efficacy of Malware Signatures, Behavior Protections, and Detection Rules against real-world\nmalware and adversary techniques.\n\nResearch priorities are chosen through open-source research vehicles, inputs from high-confidence third parties,\nand data collected from Elastic's evolving telemetry.\n\n## Workflow\n\nThe published version of the site is generated using a customized [MkDocs Material](https://squidfunk.github.io/mkdocs-material/)\ntheme that uses the [Insiders](https://squidfunk.github.io/mkdocs-material/insiders/) features.\n\nWhen a commit is made to the `main` branch, the custom container is used to render the Markdown content files into web\ncontent that is then pushed to the `gh-pages` branch. Once that succeeds, GitHub Actions kicks off the action that\npublishes the content to the website.\n\n\n---\nContact: `threat-notification //@// elastic.co`\n[Elastic Community Slack](https://elasticstack.slack.com)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Felastic%2Fsecurity-research","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Felastic%2Fsecurity-research","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Felastic%2Fsecurity-research/lists"}