Sublime Platform

by Sublime Security

Overview

A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and control, hunt for advanced threats, and collaborate with the community.

Sublime uses Message Query Language (MQL), a domain-specific language purpose-built for describing behavior in email. MQL is email provider agnostic, enabling defenders to write, run, and share Detections-as-Code.

Learn more about MQL: Introduction to Message Query Language

Setup

curl -sL https://raw.githubusercontent.com/sublime-security/sublime-platform/main/install-and-launch.sh | sh

View Docker Quickstart

View other deployment methods

Detection rules

Open-source detection rules and links to community Feeds are maintained in the sublime-rules repo.

Name		Name	Last commit message	Last commit date
Latest commit History 189 Commits
.github/workflows		.github/workflows
aws		aws
configs		configs
nginx-custom-ssl		nginx-custom-ssl
nginx-letsencrypt		nginx-letsencrypt
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
certbot.env.example		certbot.env.example
docker-compose.yml		docker-compose.yml
install-and-launch.sh		install-and-launch.sh
postflight_checks.sh		postflight_checks.sh
sublime.env.example		sublime.env.example
update-and-run.sh		update-and-run.sh
utils.sh		utils.sh

License

sublime-security/sublime-platform

Folders and files

Latest commit

History

Repository files navigation

Sublime Platform

Overview

Setup

Detection rules

Learn more

About

Topics

Resources

License

Stars

Watchers

Forks

Languages