-
Updated
Dec 28, 2022 - Python
threathunting
Here are 52 public repositories matching this topic...
Uses the Damerau-Levenshtein distance to find suspicious tasks running on endpoints in Windows.
-
Updated
Feb 7, 2024 - Python
An updated fork of @3lp4tr0n's BeaconHunter. Detect and respond to Cobalt Strike beacons using ETW
-
Updated
Nov 15, 2023 - C#
🏴☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration day to day tasks 😉
-
Updated
Mar 13, 2024 - Python
Short deep dive into Threat Hunting on AWS
-
Updated
Oct 15, 2023 - Jupyter Notebook
Phishing Hunging Operations (PHOps) 🚀
-
Updated
Feb 10, 2023 - YARA
l
-
Updated
May 20, 2022
Repository for SOC analysts, queries to investigate, advanced hunting, sites for analysis, malware samples, courses to improve skills, IOC and monitoring.
-
Updated
May 5, 2024
✨ I am maintaining this blog with https://beautifuljekyll.com
-
Updated
Apr 24, 2024 - HTML
Another Threat Hunting knowledge base :) based on MITRE ATT&CK Matrix
-
Updated
Sep 21, 2019
SOC Functional Model (SFM) helps organizations to plan & prepare setting up a new SOC or to asses your existing SOC capabilities and identify the areas to focus.
-
Updated
Jul 27, 2022
My Session presentations
-
Updated
Jan 4, 2024 - PowerShell
A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
-
Updated
May 28, 2021 - PowerShell
Detect leaks in security event logs.
-
Updated
Apr 9, 2019 - Python
Extract logs based off events from sysmon. Comes as a package, cli and ui.
-
Updated
May 22, 2020 - Python
Scripts for hunting
-
Updated
Jul 25, 2023 - Shell
Sniffing out well-known threat groups
-
Updated
Dec 14, 2023 - Python
THAMARA - Threat Hunting with AMSI and YARA
-
Updated
Apr 7, 2024 - C
Improve this page
Add a description, image, and links to the threathunting topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the threathunting topic, visit your repo's landing page and select "manage topics."