Blackhat 2025 presentation and codebase: AI SOC agent & MCP server for automated security investigation, alert triage, and incident response. Integrates with ELK, IRIS, and other platforms.
-
Updated
Dec 28, 2025 - Python
#
soc-tools
Here are 12 public repositories matching this topic...
This tool runs scripts and display the result in a Web Interface.
security website webserver python3 devops-tools wsgi-server admin-tools script-executor security-tools devsecops pypi-package soc-tools environment-share scripts-share teams-tools
-
Updated
Jun 28, 2024 - Python
🦅 ZeroScout: The Autonomous Local & Cloud Threat Hunter. Visualize attacks in a live War Room, identify APT groups via Genetic Analysis, and auto-generate defense rules (YARA/SIGMA). DFIR & Malware Analysis Framework.
python cli detection static-analysis incident-response dfir threat-hunting malware-analysis yara blue-team soc-tools sigma-rules ransomware-dectection war-rom
-
Updated
Dec 1, 2025 - Python
Lightweight Bash-based malware hash scanner for SOC analysts to detect known malware using SHA256 hash comparison.
macos bash incident-response cybersecurity infosec shell-script threat-hunting linux-security malware-detection blue-team soc-tools hash-based-detection
-
Updated
Jan 7, 2026 - Shell
Advanced Endpoint Forensic & Observability Framework | C++20 Windows Internals Hunter
-
Updated
Dec 26, 2025 - C++
This project is a Comprehensive Vulnerability Management and Software Catalog system Dashboard.
cybersecurity cve cve-scanning cyber-security cve-search soc-tools cyber-defense cves cve-management cve-dashboard
-
Updated
Sep 17, 2024 - HTML
AEGIS-Omega is a high-performance, hybrid multi-layer Intrusion Detection System (IDS). It features a 4-layer detection strategy—Signature Analysis, Autoencoder Anomaly Detection, BiLSTM Deep Learning, and Ensemble Fusion—to identify attack types with 95% F1-score. Includes a FastAPI backend, React dashboard, and PCAP,Netflow analysis.
react python machine-learning deep-learning ids autoencoder network-analysis network-security intrusion-detection-system anomaly-detection bilstm threat-detection sih soc-tools pcap-analysis ntro
-
Updated
Jan 30, 2026 - Python
TheHive Modified: a Scalable, Open Source and Free Security Incident Response Platform
-
Updated
Jul 6, 2018 - JavaScript
Command-line tool for detecting phishing emails in .eml files with rule-based analysis.
python phishing cybersecurity spam-detection eml threat-intelligence portfolio-project soc-tools email-analysis
-
Updated
Apr 20, 2025 - Python
A collection of projects for enterprise security operations
access-control vulnerability-management security-automation devsecops data-loss-prevention zerotrust security-operations soc-tools data-redaction com-automation
-
Updated
Dec 15, 2025 - PowerShell
Fast, SOC‑ready malicious document scanner that turns suspicious PDFs, DOC(X), XLS(X), and RTFs into IOC‑rich, SIEM‑friendly reports.
python cli ioc static-analysis cybersecurity malware-analysis threat-intelligence abuseipdb virus-total soc-tools pdf-analysis office-macros
-
Updated
Jul 23, 2025 - Python
🛡️ Enhance network security with AEGIS-Ω, a hybrid intrusion detection system that combines signature and anomaly detection using advanced deep learning methods.
react python machine-learning deep-learning ids autoencoder network-security intrusion-detection-system anomaly-detection bilstm threat-detection sih soc-tools pcap-analysis ntro
-
Updated
Feb 21, 2026 - Python
Improve this page
Add a description, image, and links to the soc-tools topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the soc-tools topic, visit your repo's landing page and select "manage topics."