threathunting

Star

Here are 57 public repositories matching this topic...

MADx00 / CBTaskBulker

Star

incident-response dfir threat-hunting bulk carbonblack triage threathunting incidentresponse

Updated Dec 28, 2022
Python

FullTang / hunters_flare

Star

Uses the Damerau-Levenshtein distance to find suspicious tasks running on endpoints in Windows.

incident-response threat-hunting edr incident-response-tooling threathunting endpoint-detection-response

Updated Feb 7, 2024
Python

This repository contains security detection rules I've created, using the flexible and open Sigma standard, designed to enhance consistency and efficiency in security operations across various log files.

cybersecurity siem threathunting networksecurity cyberthreatintelligence sigma-rules threatdetection

Updated Jun 21, 2024

rjohnsen / threathunting-workstation

Star

Threathunting Workstation Setup Scripts

workstation threathunting

Updated Oct 6, 2024
Shell

phishing-hunter / cert-hunter

Sponsor

Star

certificate transparency log analysis

phishing-detection threathunting

Updated Feb 7, 2023
C

KQLCafe / kustocon

Star

Kusto Conference

security website conference kusto kql threathunting detections

Updated Jul 15, 2024

APT-410 / Resources-for-learning

Star

python learning security hacking pentesting webappsec blueteam purpleteam threathunting

Updated May 20, 2022

DrPwner / FortiLucene

Star

FortiLucene is a Web UI Program Interface that facilitates the FortiEDR Lucene Syntax Query Language

Updated Aug 24, 2024
JavaScript

5stars217 / 5stars217.github.io

Star

✨ I am maintaining this blog with https://beautifuljekyll.com

threathunting

Updated Apr 24, 2024
HTML

dyussekeyev / thamara

Star

THAMARA - Threat Hunting with AMSI and YARA

malware cybersecurity infosec threat-hunting cyber information-security cyber-security yara malware-detection yara-forensics yara-scanner malware-protection threat-detection amsi informationsecurity threathunting cybersec infosectools

Updated Apr 7, 2024
C

opendefinition / tuoda

Star

Generic log importer for Graph databases

security graphs logs graphing blueteam threathunting

Updated Jul 12, 2022
Go

GACWR / openuba-model-hub

Star

frontend, model registry, model search, and model marketplace for OpenUBA

flask security elasticsearch machine-learning spark analytics tensorflow sklearn elk datascience cybersecurity siem information-security uba anomaly-detection user-behaviour ueba threathunting

Updated Jun 3, 2020
CSS

HuntDownProject / hunt-for-fun-profit

Star

Scripts for hunting

threat-hunting threatintel threat-intelligence threathunting

Updated Jul 25, 2023
Shell

Ashton-Sidhu / sysmon-extract

Star

Extract logs based off events from sysmon. Comes as a package, cli and ui.

data-science spark infosec sysmon dataengineering threat-intelligence threathunting streamlit

Updated May 22, 2020
Python

phishing-hunter / PHOps

Sponsor

Star

Phishing Hunging Operations (PHOps) 🚀

takedown gitops threathunting phishing-defense

Updated Feb 10, 2023
YARA

Kirtar22 / Presentations

Star

Presentations

splunk incident-response dfir sysmon mitre edr mitre-attack threathunting sectalks

Updated Feb 9, 2024
PowerShell

csirtgadgets / cifsdk-v5-py

Star

CIFv5 SDK (beta- only works with CIFv5)

cif threatintel threathunting

Updated Sep 9, 2021
Python

blUeBUg200 / soc-operations

Star

SOC Functional Model (SFM) helps organizations to plan & prepare setting up a new SOC or to asses your existing SOC capabilities and identify the areas to focus.

risk-analysis knowledge-graph threat-modeling mitre soc threat-intelligence threathunting