Threathunting Book Save

一些常见的安全检测规则及事件

Project README

Security-operation-book

简介

Security-operation-book目前已覆盖116个TID，328个技术点。主要涵盖Web、Windows AD、Linux，涉及ATT&CK技术、模拟测试、检测思路、检测所需数据源等。

覆盖图

规则说明

Web_Attck检测规则为Suricata、Sigma两种格式，端点检测规则为Sigma格式为主。

Open Source Agenda is not affiliated with "Threathunting Book" Project. README Source: 0x783kb/Security-operation-book

Stars

560

Open Issues

Last Commit

1 week ago

Repository

0x783kb/Security-operation-book

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/threathunting-book"><img src="https://www.opensourceagenda.com/projects/threathunting-book/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022