Statistics for topic threat-hunting

RepositoryStats tracks 584,796 Github repositories, of these 176 are tagged with the threat-hunting topic. The most common primary language for repositories using this topic is Python (54). Other languages include: PowerShell (14)

Stargazers over time for topic threat-hunting

Most starred repositories for topic threat-hunting (view more)

MISP
MISP MISP
1.4k
5.4k
agpl-3.0
279
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cti misp stix security threatintel intelligence threat-intel cybersecurity threat-hunting threat-sharing fraud-detection threat-analysis fraud-management fraud-prevention malware-analysis information-sharing threat-intelligence information-exchange information-security threat-intelligence-platform
Created 2013-02-07
26,467 commits to 2.5 branch, last one 21 hours ago
elceef
dnstwist elceef
775
4.9k
apache-2.0
156
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
dns idn osint domains fuzzing scanner phishing homoglyph typosquatting threat-hunting homograph-attack threat-intelligence
Created 2015-06-11
638 commits to master branch, last one about a month ago
SwiftOnSecurity
sysmon-config SwiftOnSecurity
1.7k
4.8k
unknown
356
Sysmon configuration file template with default high-quality event tracing
netsec sysmon logging windows monitoring threatintel sysinternals threat-hunting
Created 2017-02-01
173 commits to master branch, last one 3 years ago
OISF
suricata OISF
1.5k
4.7k
gpl-2.0
174
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
ids ips nsm security suricata cybersecurity threat-hunting network-monitor network-monitoring intrusion-detection-system intrusion-prevention-system
Created 2012-08-14
16,459 commits to master branch, last one 7 days ago
OTRF
ThreatHunter-Playbook OTRF
809
4.0k
mit
373
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
dfir mitre hunter sysmon hunting hypothesis threat-hunting mitre-attack-db hunting-campaigns
Created 2017-03-28
466 commits to master branch, last one 2 years ago
0x4D31
awesome-threat-detection 0x4D31
660
3.8k
unknown
194
✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️
awesome security detection awesome-list threat-hunting threat-detection incident-response
Created 2018-01-13
148 commits to master branch, last one about a year ago

Trending repositories for topic threat-hunting (view more)

Last 3 days (new repositories)
no newly created repositories trending in the last 3 days
Last 3 days (absolute gain)
Security-Onion-Solutions
Security-Onion-Solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

3,301 (+16)
Yamato-Security
Yamato-Security/hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

2,317 (+8)
agpl-3.0
jacobdjwilson
jacobdjwilson/awesome-annual-security-reports

A curated list of annual cyber security reports

331 (+7)
cc0-1.0
WithSecureLabs
WithSecureLabs/chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

2,884 (+7)
gpl-3.0
OISF
OISF/suricata

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

4,717 (+7)
gpl-2.0
Last 3 days (relative gain)
jacobdjwilson
jacobdjwilson/awesome-annual-security-reports

A curated list of annual cyber security reports

331 (+2%)
cc0-1.0
activecm
activecm/rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

199 (+2%)
gpl-3.0
BushidoUK
BushidoUK/Ransomware-Tool-Matrix

A resource containing all the tools each ransomware gangs uses

753 (+0.9%)
mthcht
mthcht/awesome-lists

Awesome Security lists for SOC/CERT/CTI

715 (+0.6%)
mit
Security-Onion-Solutions
Security-Onion-Solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

3,301 (+0.5%)
Last week (new repositories)
no newly created repositories trending in the last week
Last week (absolute gain)
Security-Onion-Solutions
Security-Onion-Solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

3,301 (+30)
BushidoUK
BushidoUK/Ransomware-Tool-Matrix

A resource containing all the tools each ransomware gangs uses

753 (+20)
Yamato-Security
Yamato-Security/hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

2,317 (+20)
agpl-3.0
blackorbird
blackorbird/APT_REPORT

Interesting APT Report Collection And Some Special IOC

2,442 (+19)
jacobdjwilson
jacobdjwilson/awesome-annual-security-reports

A curated list of annual cyber security reports

331 (+17)
cc0-1.0
Last week (relative gain)
jacobdjwilson
jacobdjwilson/awesome-annual-security-reports

A curated list of annual cyber security reports

331 (+5%)
cc0-1.0
BushidoUK
BushidoUK/Ransomware-Tool-Matrix

A resource containing all the tools each ransomware gangs uses

753 (+3%)
activecm
activecm/rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

199 (+3%)
gpl-3.0
rodanmaharjan
rodanmaharjan/ThreatIntelligence

Malicious IP source.

52 (+2%)
Karneades
Karneades/awesome-malware-persistence

A curated list of awesome malware persistence tools and resources.

187 (+1%)
cc0-1.0
Last month (new repositories)
mthcht
mthcht/ThreatIntel-Reports

Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports

40
Last month (absolute gain)
0x4D31
0x4D31/awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

3,849 (+194)
WithSecureLabs
WithSecureLabs/chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

2,884 (+91)
gpl-3.0
OISF
OISF/suricata

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

4,717 (+91)
gpl-2.0
Security-Onion-Solutions
Security-Onion-Solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

3,301 (+83)
MISP
MISP/MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

5,393 (+65)
agpl-3.0
Last month (relative gain)
msdirtbag
msdirtbag/ADXFlowmaster

ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.

27 (+286%)
gpl-3.0
LOLESXi-Project
LOLESXi-Project/LOLESXi

LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. This project gathers procedural examples from public reports of ...

105 (+36%)
gpl-3.0
rodanmaharjan
rodanmaharjan/ThreatIntelligence

Malicious IP source.

52 (+11%)
activecm
activecm/rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

199 (+11%)
gpl-3.0
jacobdjwilson
jacobdjwilson/awesome-annual-security-reports

A curated list of annual cyber security reports

331 (+10%)
cc0-1.0
Last 12-months (new repositories)
BushidoUK
BushidoUK/Ransomware-Tool-Matrix

A resource containing all the tools each ransomware gangs uses

753
activecm
activecm/rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

199
gpl-3.0
eremit4
eremit4/favihunter

Discover and track internet assets using favicon hashes through search engines.

121
mit
LOLESXi-Project
LOLESXi-Project/LOLESXi

LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. This project gathers procedural examples from public reports of ...

105
gpl-3.0
anvilogic-forge
anvilogic-forge/armory

Anvilogic Forge

86
gpl-3.0
Last 12-months (absolute gain)
OISF
OISF/suricata

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

4,717 (+1,109)
gpl-2.0
intelowlproject
intelowlproject/IntelOwl

IntelOwl: manage your Threat Intelligence at scale

3,847 (+910)
agpl-3.0
0x4D31
0x4D31/awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

3,849 (+855)
Security-Onion-Solutions
Security-Onion-Solutions/securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

3,301 (+831)
elceef
elceef/dnstwist

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

4,921 (+702)
apache-2.0
Last 12-months (relative gain)
0xAnalyst
0xAnalyst/DefenderATPQueries

Hunting Queries for Defender ATP

73 (+1,725%)
gpl-3.0
mthcht
mthcht/ThreatHunting-Keywords-yara-rules

yara detection rules for hunting with the threathunting-keywords project

87 (+1,143%)
BushidoUK
BushidoUK/Ransomware-Tool-Matrix

A resource containing all the tools each ransomware gangs uses

753 (+786%)
mthcht
mthcht/awesome-lists

Awesome Security lists for SOC/CERT/CTI

715 (+741%)
mit
emrekybs
emrekybs/Douglas-042

Powershell script to help Speed ​​up Threat hunting incident response processes

45 (+543%)
mit