21 results found Sort:

intelowlproject
IntelOwl intelowlproject
441
3.8k
agpl-3.0
81
IntelOwl: manage your Threat Intelligence at scale
ioc dfir osint python honeynet intel-owl enrichment threatintel osint-python cybersecurity hacktoberfest threathunting cyber-security security-tools threat-hunting malware-analysis malware-analyzer incident-response threat-intelligence cyber-threat-intelligence
Created 2019-12-31
2,556 commits to master branch, last one 2 months ago
alexandreborges
malwoverview alexandreborges
444
3.0k
gpl-3.0
118
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Threa...
triage malware urlhaus malpedia malshare threatfox alienvault virustotal cybersecurity malwarebazaar threathunting threat-hunting malware-analysis threatintelligence
Created 2018-09-08
557 commits to master branch, last one 8 days ago
mandiant
ThreatPursuit-VM mandiant
248
1.2k
other
70
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well a...
cyber threat fireeye malware mandiant analytics data-science intelligence threathunting virtual-machine threatintelligence intelligence-analysis
This repository has been archived (exclude archived)
Created 2020-09-16
16 commits to master branch, last one about a year ago
atc-project
atomic-threat-coverage atc-project
157
972
apache-2.0
56
Actionable analytics designed to combat threats
mitre-attack threat-model threathunting threatdetection incidentresponse threatintelligence
Created 2018-12-12
689 commits to master branch, last one 2 years ago
darkquasar
AzureHunter darkquasar
85
770
mit
22
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
dfir azure azforensics powershellv5 azuresearcher cybersecurity threathunting threat-hunting azure-forensics cloud-forensics unifiedauditlog digital-forensics incident-response
Created 2021-09-09
40 commits to main branch, last one 2 years ago
tenzir
tenzir tenzir
89
645
bsd-3-clause
35
Tenzir is the data pipeline engine for security teams.
soc pcap siem zeek sigma dataops netflow security suricata pipelines secdataops hacktoberfest investigation threathunting incident-response
Created 2010-09-23
22,897 commits to main branch, last one 22 hours ago
mthcht
ThreatHunting-Keywords mthcht
55
473
unknown
11
Awesome list of keywords and artifacts for Threat Hunting sessions
soc dfir iocs siem splunk redteam blueteam forensic elk-stack hacktools yara-rules awesome-list threathunting threat-hunting endpoint-security incident-response offensive-scripts offensive-security threat-intelligence detection-engineering
Created 2023-05-16
505 commits to main branch, last one 10 days ago
alexverboon
MDATP alexverboon
59
455
mit
33
MDATP
kql blogs learning threathunting defender-for-endpoint defender-for-identity microsoft-defender-xdr defender-for-cloud-apps defender-for-office-365
This repository has been archived (exclude archived)
Created 2019-06-15
208 commits to master branch, last one 4 months ago
GACWR
OpenUBA GACWR
227
394
gpl-3.0
30
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Indu...
elk uba siem ueba flask react spark nodejs sklearn security analytics tensorflow datascience cybersecurity elasticsearch threathunting user-behaviour machine-learning anomaly-detection information-security
Created 2019-09-24
179 commits to master branch, last one 2 years ago
SlimKQL
Hunting-Queries-Detection-Rules SlimKQL
48
259
bsd-3-clause
19
KQL Queries. Microsoft Defender, Microsoft Sentinel
kql azure defender sentinel microsoft defenderxdr mitre-attack threathunting threatdetection
Created 2024-08-02
420 commits to main branch, last one a day ago
AbdulRhmanAlfaifi
Fennec AbdulRhmanAlfaifi
21
192
apache-2.0
5
Artifact collection tool for *nix systems
ir dfir rust blueteam threathunting
Created 2022-02-08
30 commits to master branch, last one 8 months ago
mthcht
Purpleteam mthcht
18
158
unknown
8
Purpleteam scripts simulation & Detection - trigger events for SOC detections
ioc soc siem linux awesome redteam tactics windows blueteam security detection purpleteam simulation techniques awesome-list mitre-attack threathunting threat-hunting offensive-scripts detection-engineering
Created 2022-12-05
721 commits to main branch, last one 10 days ago
UncoderIO
Uncoder_IO UncoderIO
23
131
other
13
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
edr xdr siem roota sigma uncoder datalake uncoderio translation threathunting
Created 2023-11-01
762 commits to main branch, last one 2 days ago
Viralmaniar
MurMurHash Viralmaniar
18
114
mit
4
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
infosec redteam blueteam phishing murmurhash purpleteam redteaming blueteaming murmurhash3 threatintel cybersecurity threathunting security-tools phishing-detection proactive-security threatintelligence threat-intelligence
Created 2021-04-27
12 commits to main branch, last one 3 years ago
alt3kx
wafaray alt3kx
14
107
gpl-3.0
5
Enhance your malware detection with WAF + YARA (WAFARAY)
waf yara blueteam pentesting yara-rules blueteaming threathunting security-tools threat-intelligence
Created 2022-09-28
5 commits to main branch, last one 2 years ago
csirtgadgets
cif-v5 csirtgadgets
11
64
mpl-2.0
7
The FASTEST way to consume threat intel.
cif csirtg threatintel threathunting
This repository has been archived (exclude archived)
Created 2020-03-07
47 commits to master branch, last one about a year ago
0xAnalyst
Sysmon 0xAnalyst
14
54
unknown
6
Sysmon config for both Windows and Linux Devices. Windows one is a bit dated
sysmon-config threathunting
Created 2017-09-13
36 commits to master branch, last one 4 months ago
mthcht
ThreatHunting-Keywords-sigma-rules mthcht
5
47
unknown
3
Sigma detection rules for hunting with the threathunting-keywords project
dfir siem blueteam sigma-rules mitre-attack threathunting threat-hunting detection-rules threat-detection forensicartifacts detection-engineering
Created 2023-08-02
84 commits to main branch, last one 18 days ago
victorpreston
HackLab victorpreston
5
34
unknown
2
Welcome to HackLab, your go-to resource for hands-on cybersecurity projects. This repository is a collection of step-by-step projects designed to enhance your understanding of various cybersecurity co...
hack wifi python hacking network python3 password keylogger cybersecurity hacking-tools threathunting cyber-security python-hacking network-security offensive-scripts
Created 2023-06-29
23 commits to master branch, last one about a year ago
HellishPn
Volatility-MM-CS HellishPn
8
29
unknown
2
Volatility MindMap & Cheat Sheet
bluteam mindmap forensics cheatsheet volatility threathunting incident-response-tooling
Created 2022-02-06
13 commits to main branch, last one 2 years ago
stvetro
HuntWithChatGPT stvetro
7
28
mit
2
Tiny proof-of-concept PowerShell script to do threat hunting using ChatGPT (text-davinci-003)
ir dfir chatgpt forensics powershell threathunting
Created 2023-02-14
3 commits to main branch, last one about a year ago