seim
Here are 18 public repositories matching this topic...
Notif360 is an open-source system monitoring and notification tool designed to provide comprehensive oversight of critical system metrics, website health, and malware scanning
-
Updated
Aug 28, 2025 - Shell
This repository stores tables for use in SEIM tools (specifically Sumologic)
-
Updated
Oct 16, 2020
Security Event and Incident Management: A security software that helps recognize and address potential security threats and vulnerabilities.
-
Updated
Aug 6, 2023 - PowerShell
Splunk SIEM investigation lab with SPL detection rules, BOTS dataset analysis, and IR reports mapped to MITRE ATT&CK
-
Updated
Jun 14, 2026
First attempt at a lambda architecture SEIM using Power BI & Azure Sentinel
-
Updated
Sep 8, 2023
Enterprise-style Wazuh SIEM homelab featuring Windows & Linux monitoring, Sysmon, Auditd, custom detections, threat hunting, incident response, and MITRE ATT&CK mapping.
-
Updated
Jun 11, 2026
My SOC Level 1 study notes from TryHackMe. Covers threat intelligence, SIEM investigations, digital forensics, endpoint monitoring, and phishing analysis, with practical labs using tools like Splunk, Wireshark, Sysmon, and Volatility.
-
Updated
May 30, 2026
Enterprise-style offensive security range: segmented pfSense architecture, intentionally vulnerable AD forest, detection engineering. Ongoing build.
-
Updated
May 2, 2026
CTI Lab 2 — Malicious File Analysis, ELK Stack, Purple Teaming (MITRE ATT&CK), and Elastic SIEM Alerting exercises. Tools: Sysmon, Atomic Red Team, Kibana, VirusTotal.
-
Updated
May 14, 2026
Basic Intrusion Detection System using Scapy
-
Updated
Apr 4, 2026 - Python
A self built log monitoring and alerting tool. Parses SSH auth logs with Bash and Python to detect brute force attacks and privilege escalation, renders the findings in a custom JavaScript dashboard, and ships with Splunk SPL queries for SIEM style correlation.
-
Updated
Jun 16, 2026 - HTML
seim + idr without an api
-
Updated
Sep 29, 2025 - Python
Portfolio of activities from the Google Cybersecurity Professional Certificate
-
Updated
Jan 30, 2026
Simulated suspicious process activity in Splunk and visualized it on a KPI dashboard. Sentinel alert for failed sign-ins, end-to-end SIEM detection, KQL queries, and automated alerting.
-
Updated
Oct 24, 2025
A hands-on Wazuh SIEM home lab for centralized log collection, endpoint monitoring, threat detection, and security event analysis.
-
Updated
Jun 30, 2026
Improve this page
Add a description, image, and links to the seim topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the seim topic, visit your repo's landing page and select "manage topics."