awesome-lists
Awesome Security lists for SOC/CERT/CTI
https://github.com/mthcht/awesome-lists
Last synced: 7 days ago
JSON representation
-
Other Lists
-
Knowledge sites
-
๐งช LAB
- LAB automation - warhorse
- LAB automation - Azure - BadZure
- LAB automation - Azure - AzureGoat
- SandBox - cuckoo
- SandBox - CAPEv2
- SandBox - Malice (Virustotal self hosted clone)
- Detection platform - wazuh
- Detection platform - securityonion
- Detection platform - Splunk
- Detection platform - Elastic
- Deployment - ansible
- SOC - Use Case Factory Automation - DetectIQ
- Honeypot - Certiception (ADCS honeypot)
- Honeypot - cowrie
- Maldev - Defense Evasion - avred
- Maldev - Defense Evasion - gocheck
- Detection Agent - Sandfly linux agent
- Log Forwarder - openwec (windows event forwarder)
- Threat Hunting Platform - deephunter
- Windows Logs - Sysmon
- LInux Logs - ossec
- Linux Logs - ecapture (SSL/TLS)
- Linux Logs - tracee
- Linux Logs - auditd
- Linux Logs - SysmonForLinux
- Linux Logs - kunai
- CTI - MISP
- Code analysis
- IR platform - rAIdline
- IR platform - FIR
- Challenges - DFIR LABS
- Log samples - Splunk Attack range
- IT - Remote connections manager - xpipe
- Endpoint Security - Windows Hardening - Harden-Windows-Security
- Endpoint Security - Linux Hardening - lynis
- Endpoint Security - Linux - apparmor
- Endpoint Security - Linux - apparmor
-
LAB
-
๐ฆ Others
-
Others
-
๐๏ธ Podcasts
-
๐ Security News
- ahnlab apt feed
- ahnlab cert feed
- ahnlab phishing feed
- ahnlab trend feed
- Akamai blog feed
- Any.run malware analysis blog feed
- Avast Blog feed
- badsectorlabs Last week in security - Redteam
- bi-zone blog feed
- bitdefender labs feed
- Blackberry blog
- broadcom blog feed
- CERT LV feed
- CERT PL feed
- CERT SE feed
- CERT SI feed
- CERT UA feed
- CIRT bd feed
- CISA news feed
- Cisco Talos
- Cloudfare security feed
- crowdstrike counter adversary operations blog
- deepinstinct blog
- detect.fyi
- Detection engineering weekly
- drweb virus alert feed
- eclecticiq threat intel
- elastic security labs blog feed
- forcepoint lab blog
- genians threat intel feed
- gi7w0rm threat intel feed
- Google Project Zero blog feed
- Google threat intelligence feed
- Google Threat analysis feed
- Group-IB feed
- harfanglab lab feed
- hexacorn blog feed
- hunt.io blog
- huntress blog feed
- IC3 CSA feed
- Infostealers Hub News Feed
- infostealers reports feed
- Intrinsec feed
- isc sans edu feed
- JPCERT feed
- krebsonsecurity feed
- malwarebytes blog feed
- malwaretech feed
- mcafee labs feed
- Microsoft security blog feed
- Microsoft Incident response ninja hub
- Microsoft Threat Intel feed
- morphisec threat research
- nccgroup research blog security
- NCSC news feed
- NIST cybersecurity insights feed
- orangecyberdefense Intel
- outpost24 research and threat intel feed
- proofpoint threat insight
- Qualys Threat research feed
- reversinglabs threat research
- security.com threat intel
- securityaffairs apt feed
- securityweek feed
- securlist apt targeted attacks feed
- Sekoia blog feed
- SentinelOne labs feed
- seqrite techical blog
- Simone Kraus blog feed
- Sybersecyrity news feed
- Talos feed
- threat connect blog feed
- threatlabz zscaler blog
- threatpost feed
- trendmicro security feed
- Trustwave blog feed
- Unit42 feed
- Unit42 feed
- virusbulletin feed
- volexity blog feed
- welivesecurity feed
- tl;dr sec newsletter
- CIRT bd feed
- trendmicro security feed
- orangecyberdefense Intel
- ahnlab cert feed
- ahnlab trend feed
- nccgroup research blog security
- ahnlab phishing feed
- bitdefender labs feed
- binarydefense blog feed
- CERT FR Avis
- Checkpoint Research feed
- claroty team82 research
- crowdstrike counter adversary operations blog
- DFIR weekly news feed
- eclecticiq threat intel
- Group-IB feed
- Microsoft Threat Intel feed
- morphisec threat research
- nccgroup research blog security
- NIST CVEs
- redcanary feed
- sans blog
- virusbulletin
- volexity blog feed
-
Security News
-
Programming Languages
Categories
Sub Categories
๐ Security News
107
๐ก๏ธ DFIR:
79
๐บ Youtube/Twitch channels
74
๐ซ IOC Feeds/Blacklists:
65
Security News
51
๐ต๏ธโโ๏ธ Investigation
51
๐ Knowledge sites
43
Investigation
39
๐งช LAB
37
Books
32
Data manipulation
32
๐ TI TTP/Framework/Model/Trackers
26
Detection Resources
19
Youtube/Twitch channels
19
Sandbox
17
Training
17
๐๏ธ Podcasts
15
๐ Training
13
LAB
13
๐ฌ Discord /Slack channels
11
Others
6
Knowledge sites
6
๐ฅ๏ธ SIEM/SOC/PurpleTeam related:
5
๐งฉ Data manipulation
5
๐ก Detection Resources
5
IOC Feeds/Blacklists:
3
๐ฆ Others
3
๐ Books
3
TI TTP/Framework/Model/Trackers
2
TI
1
๐ Github
1
Content creation
1
DFIR
1
Formations
1
More TI
1
Keywords
security
28
threat-hunting
23
dfir
22
threat-intelligence
19
cybersecurity
17
incident-response
17
malware-analysis
14
forensics
14
malware
12
windows
12
linux
11
awesome-list
9
threatintel
9
powershell
8
detection
7
malware-research
7
python
7
blueteam
7
infosec
6
security-tools
6
siem
6
soc
6
cti
6
detection-engineering
6
yara-rules
5
mitre-attack
5
splunk
5
awesome
5
redteam
5
sigma
5
malware-detection
4
docker
4
threat-analysis
4
endpoint-security
4
threat-detection
4
macos
4
apt
4
memory-forensics
4
digital-forensics
4
golang
4
ioc
4
active-directory
4
rust
4
reverse-engineering
4
forensic
4
misp
4
iocs
4
timeline
4
intrusion-detection
4
osint
3