GitHub

njodzela/soc-query-library

A production-grade collection of detection queries spanning 5 major SIEM platforms and 10 threat categories mapped to the MITRE ATT&CK framework. Built for SOC analysts, detection engineers, and ...
GitHub

BOTSv3 SOC Incident Analysis – COMP3010

This repository contains the investigation and analysis conducted as part of the COMP3010 Security Operations coursework. The project uses the Boss of the SOC v3 (BOTSv3) dataset and Splunk Enterprise ...