Skip to content
#

ai-soc

Here are 18 public repositories matching this topic...

Rust stream processing engine for real-time detection. Open-source Apache Flink alternative built for detection engineering, fraud prevention, and MITRE ATT&CK coverage. 1.5M events/sec, single 15MB binary, no JVM.

  • Updated Jul 17, 2026
  • Rust

Built a Full-Cycle Security Operations Pipeline around a T-Pot honeypot deployment on AWS, with tailscale-enabled local Splunk SIEM log ingestion, AI-powered log analysis and intelligence (Claude + VirusTotal MCPs), incident tracking via DFIR IRIS and Slack, Ollama-based alert triage, and automated response via OPNsense Firewall Rules

  • Updated Jun 16, 2026
  • YARA

AgenticAnomaly is an indirect prompt injection CTF for testing how agentic security operations center (SOC) workflows can be exploited through indirect prompt injection.

  • Updated Jun 23, 2026
  • Python

Research for security teams whose alert volume has outrun the SOC and who are deciding how to scale operations: add people, or add AI agents that triage and investigate at machine speed with humans in control.

  • Updated Jul 10, 2026
auraspear-platform

AuraSpear is an end-to-end AI SOC / SIEM / SOAR / threat-intelligence platform. It brings alerts, cases, incidents, hunts, intel enrichment, detection engineering, connectors, and AI reasoning into one multi-tenant, RBAC-governed workspace — with AI woven through investigation, not bolted on.

  • Updated Jun 27, 2026
  • TypeScript

Improve this page

Add a description, image, and links to the ai-soc topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the ai-soc topic, visit your repo's landing page and select "manage topics."

Learn more