☆115Jan 31, 2024Updated 2 years ago
Alternatives and similar repositories for CB-Threat-Hunting
Users that are interested in CB-Threat-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Collection of useful, up to date, Carbon Black Response Queries☆86Oct 23, 2020Updated 5 years ago
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- Queries for Carbon Black Response☆11Feb 11, 2020Updated 6 years ago
- Quick script to build host or investigation timelines using Carbon Black Response☆12Sep 25, 2018Updated 7 years ago
- A repo containing tools developed by Carbon Black's Threat Research Team: Threat Analysis Unit☆242Jul 22, 2021Updated 4 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 3 years ago
- Searches For Threat Hunting and Security Analytics☆238Mar 26, 2025Updated last year
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,508Jan 12, 2026Updated 2 months ago
- Carbon Black Response IR tool☆55Dec 10, 2020Updated 5 years ago
- A collection of resources for Threat Hunters☆914Oct 15, 2024Updated last year
- Threat Hunting & Incident Investigation with Osquery☆217Mar 30, 2022Updated 4 years ago
- ☆168Jan 20, 2021Updated 5 years ago
- ☆21Feb 10, 2021Updated 5 years ago
- Carbon Black API - Python language bindings☆145Aug 22, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- CLI Search for Security Operators of MITRE ATT&CK URLs☆17Jan 5, 2023Updated 3 years ago
- Mitre Att&ck Technique Emulation☆82Mar 6, 2019Updated 7 years ago
- Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs☆730Jan 21, 2020Updated 6 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,175Jul 26, 2023Updated 2 years ago
- Detecting ATT&CK techniques & tactics for Linux☆257Oct 1, 2020Updated 5 years ago
- Defence Against the Dark Arts☆34Sep 15, 2019Updated 6 years ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆38Feb 23, 2026Updated last month
- Actionable analytics designed to combat threats☆1,006May 25, 2022Updated 3 years ago
- Collecting & Hunting for IOCs with gusto and style☆241Aug 1, 2021Updated 4 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- event shipper for Carbon Black Defense notifications☆10Feb 25, 2023Updated 3 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,859Nov 17, 2021Updated 4 years ago
- virustotal API-based project for checking the list of hashes against virustotal.com database☆11Feb 26, 2018Updated 8 years ago
- Sample queries for Advanced hunting in Microsoft 365 Defender☆2,053Feb 17, 2022Updated 4 years ago
- A repository of my own Sigma detection rules.☆164Nov 25, 2025Updated 4 months ago
- Volatility plugins developed and maintained by the community☆21Sep 18, 2024Updated last year
- Anything related to Ghidra☆12Apr 22, 2019Updated 6 years ago
- ☆173Mar 16, 2026Updated 2 weeks ago
- CB API scripts for IR, administration, etc.☆32Jun 3, 2019Updated 6 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- ☆1,091May 1, 2019Updated 6 years ago
- Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.☆15Jul 1, 2022Updated 3 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Feb 20, 2026Updated last month
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆168Dec 10, 2018Updated 7 years ago
- Framework that sits on top of Splunk Enterprise Security to do auto-mitigation☆14Dec 29, 2014Updated 11 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Windows Events Attack Samples☆2,531Jan 24, 2023Updated 3 years ago