Panther Detections

Free

Panther is a modern SIEM built for security operations at scale. Teams can define detections as code and programmatically upload them to their Panther deployment. This repository contains detections developed by the Panther Team and the Community, welcoming contributions. The repo structure includes folders with rules for analyzing logs, policies for secure resource states, and scheduled rules for SQL query outputs. Python environment setup instructions are provided for installation and running.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

Splunk Security Content

Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.

Free

SIEM

OpenSOC

A centralized tool for security monitoring and analysis that integrates various open source big data technologies.

Free

SIEM

IBM QRadar

IBM QRadar is a SIEM solution for real-time threat detection.

Free

SIEM

Elastic

Elasticsearch is a versatile platform for centralized data storage, fast search, and scalable analytics.

Free

SIEM

Open Source Security Events Metadata (OSSEM)

A community-led project focused on standardizing security event logs.

Free

SIEM

ELAT (Event Log Analysis Tool)

ELAT (Event Log Analysis Tool) is a tool that helps in analyzing Windows event logs for malware detection.

Free

SIEM

Procmon for Linux

Procmon for Linux is a reimagining of the classic Procmon tool from Windows, allowing Linux developers to trace syscall activity efficiently.

Free

SIEM

LastActivityView

A tool that collects and displays user activity and system events on a Windows system.

Free

SIEM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free

Security Operations

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free

Blogs and News

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial

Security Operations

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial

Application Security

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial

IAM

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security