Sentrilite — Multi-Cloud Cost Intelligence Report & Threat Detection for Hybrid-Cloud

A POC to implement Detection-as-Code with Terraform and Sumo Logic.

A Python-native Detection as Code Framework

A Pythonic Detection Rules Framework

Infrastructure as code for CrowdStrike — manage detections, workflows, saved searches, and more with a Terraform-like lifecycle.

Resource for all things threat detection

A Panther Global Helper for enriching alerts using the Axonius CAASM platform

Sentrilite Control Plane to manage Sentrilite Agents

Sentrilite EDR/XDR for Windows: Detection-As-Code, Observability, Security & Live Telemetry with AI/LLM Insights

Security infrastructure · Detection as code · Multi-cloud

Jibril Runtime Security Public Types. Important for unmarshalling events and similar needs.

This detection engineering repo is for the Detection as Code CI/CD pipeline

A comprehensive, modular Detection as Code framework for Microsoft Sentinel, deployable through Terraform with centralised configuration and automated documentation.

All things Detection Engineering from Proposal to Detection-as-Code repository for Microsoft Sentinel and eventually Splunk. YAML-based detection rules mapped to MITRE ATT&CK and Cyber Kill Chain stages, enriched with lifecycle tags and automated for CI/CD deployment.

AI-Generated Code Detector for CI/CD Pipelines (EXPERIMENTAL)

DaC

*Under Development* This project is soon to be private, housing a decision engine utilising both deterministic and non-deterministic ai-engineering strategies to run and SOC detection workflow augmented by a DaC pipeline