threathunting
There are 52 repositories under threathunting topic.
intelowlproject/IntelOwl
IntelOwl: manage your Threat Intelligence at scale
alexandreborges/malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
mandiant/ThreatPursuit-VM
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
atc-project/atomic-threat-coverage
Actionable analytics designed to combat threats
darkquasar/AzureHunter
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
tenzir/tenzir
Open source security data pipelines.
alexverboon/MDATP
Microsoft Defender XDR - Resource Hub
mthcht/ThreatHunting-Keywords
Awesome list of keywords and artifacts for Threat Hunting sessions
GACWR/OpenUBA
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]
Kirtar22/Litmus_Test
Detecting ATT&CK techniques & tactics for Linux
AbdulRhmanAlfaifi/Fennec
Artifact collection tool for *nix systems
mthcht/Purpleteam
Purpleteam scripts simulation & Detection - trigger events for SOC detections
Viralmaniar/MurMurHash
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
UncoderIO/Uncoder_IO
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
alt3kx/wafaray
Enhance your malware detection with WAF + YARA (WAFARAY)
csirtgadgets/cif-v5
The FASTEST way to consume threat intel.
Truvis/SplunkDashboards
Collection of Dashboards for Threat Hunting and more!
mthcht/ThreatHunting-Keywords-sigma-rules
Sigma detection rules for hunting with the threathunting-keywords project
svch0stz/TheThreatHuntLibrary
Library of threat hunts to get any user started!
victorpreston/HackLab
Welcome to HackLab, your go-to resource for hands-on cybersecurity projects. This repository is a collection of step-by-step projects designed to enhance your understanding of various cybersecurity concepts, techniques, and tools.
HellishPn/Volatility-MM-CS
Volatility MindMap & Cheat Sheet
stvetro/HuntWithChatGPT
Tiny proof-of-concept PowerShell script to do threat hunting using ChatGPT (text-davinci-003)
eremit4/Akamaru
Sniffing out well-known threat groups
ecstatic-nobel/Aisle25
Detect leaks in security event logs.
00gxd14g/misp-extractor
This is a simple Python script that connects to a MISP instance and retrieves attributes of specific types (such as IP addresses, URLs, and hashes). The retrieved attributes are then written to separate files.
elceef/yara-rulz
Collection of generic YARA rules
CertAcademico/IncidentResponseTool
Kit de herramientas para atender un incidente de Ciberseguridad y elementos claves para poder gestionar y analizar artefactos basados en una intrusión informática.
TeMiroYteHasheo/The-Hunters-Framework
Project to Support The Hunter's Framework (THF)
ManuelBerrueta/BST
🏴☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration day to day tasks 😉
N3tworkSec/N3tstatIDS
Lightweight Endpoint Detection & Response (EDR) Framework
buzzer-re/DeepSecurity-2-ATTCK
Pull your DS rules and build a ATT&CK matrix
Richard1611/RemoteKapeTriage
A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
BenjiTrapp/aws-threat-hunting
Short deep dive into Threat Hunting on AWS
xFFninja/happy_threat_hunting
Threat Hunting
adamsmesher/hunterground
Another Threat Hunting knowledge base :) based on MITRE ATT&CK Matrix
AndrewRathbun/BeaconHunter
An updated fork of @3lp4tr0n's BeaconHunter. Detect and respond to Cobalt Strike beacons using ETW