Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/elastic/protections-artifacts

Elastic Security detection content for Endpoint
https://github.com/elastic/protections-artifacts

Last synced: about 1 month ago
JSON representation

Elastic Security detection content for Endpoint

Host: GitHub
URL: https://github.com/elastic/protections-artifacts
Owner: elastic
License: other
Created: 2022-05-24T20:05:07.000Z (over 2 years ago)
Default Branch: main
Last Pushed: 2024-09-18T12:30:53.000Z (about 2 months ago)
Last Synced: 2024-09-27T16:01:10.496Z (about 2 months ago)
Language: YARA
Homepage: https://www.elastic.co/security/endpoint-security
Size: 3.36 MB
Stars: 1,004
Watchers: 46
Forks: 109
Open Issues: 4
Metadata Files:
- Readme: README.md
- License: LICENSE.txt

Awesome Lists containing this project

README

        [![ATT&CK navigator coverage](https://img.shields.io/badge/ATT&CK-Navigator-red.svg)](https://ela.st/protections-artifacts-navigator)



  Protections Artifacts


Elastic Security prevents ransomware and malware, detects advanced threats, and arms responders with vital context. It’s free and open, ready for every endpoint.

Protections-Artifacts is the home of our detection logic (rules, yara, etc) for [Elastic Security for endpoint](https://www.elastic.co/security/endpoint-security). At Elastic, we believe that being open and transparent is critical for the success of us and our users. Check out our [blog post](https://www.elastic.co/blog/continued-leadership-in-open-and-transparent-security) if you are interested in additional background.

# Directory

Below you will find the artifacts we have opened in this repository:

| Folder | Description |

| ------ | ----------- |

| [`behavior/`](behavior/) | EQL based malicious behavior rules |

| [`yara/`](yara) | Yara rules for malware protection |

| [`ransomware/`](ransomware/) | Elastic ransomware protection artifact  |

# Questions? Problems? Suggestions?

If you would like you to provide feedback or contribute to this repository, please familiarize yourself with the applicable artifact’s readme and [open an issue](https://github.com/elastic/protections-artifacts/issues/new/choose) using one of the provided templates. We cannot accept pull requests at this time because this repository is automatically generated.

You can also reach us in our [Slack Workspace](https://www.elastic.co/blog/join-our-elastic-stack-workspace-on-slack) or in the [Security Discuss](https://discuss.elastic.co/c/security/) forum.

# License

Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one or more contributor license agreements. Licensed under the Elastic License 2.0; you may not use these artifacts except in compliance with the Elastic License 2.0

Contributors must sign a [Contributor License Agreement](https://www.elastic.co/contributor-agreement) before contributing code to any Elastic repositories.