BenjiTrapp/aws-threat-hunting external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

BenjiTrapp/aws-threat-hunting

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/BenjiTrapp/aws-threat-hunting)

Close

BenjiTrapp / aws-threat-huntingView on GitHubMore

• External links
• Readme badge

Short deep dive into Threat Hunting on AWS

☆19Oct 15, 2023Updated 2 years ago

Alternatives and similar repositories for aws-threat-hunting

Users that are interested in aws-threat-hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• axon-git / rapid-response

  View on GitHub
  Repository for storage of Axon Rapid Response related queries, scripts and more
  ☆10Jul 22, 2025Updated 10 months ago
• Lartsch / cisextractor

  View on GitHub
  Extract CIS benchmarks from PDFs
  ☆16Jul 26, 2023Updated 2 years ago
• SecurityRunners / cloud-exposure-catalog

  View on GitHub
  A catalog of services that can be publicly exposed within different cloud providers.
  ☆14Aug 30, 2024Updated last year
• schwartz1375 / Threat-Hunting-in-AWS

  View on GitHub
  ☆39Aug 23, 2022Updated 3 years ago
• offensive-terraform / terraform-aws-ebs-snapshot-publicly-exposed

  View on GitHub
  Offensive Terraform module which copies publicly exposed EBS snapshot to us-east-1 region in attacker's AWS account and creates EBS volum…
  ☆14Sep 18, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• openwall / tcb

  View on GitHub
  Alternative password shadowing scheme
  ☆10Feb 22, 2026Updated 3 months ago
• jdifeder / exabeam-enhancement-suite

  View on GitHub
  ☆11Feb 9, 2023Updated 3 years ago
• kovart / forta-agents

  View on GitHub
  🌌 Real-time threat detection for smart contracts
  ☆10May 16, 2023Updated 3 years ago
• vmware-archive / eqr

  View on GitHub
  Event Query Router
  ☆12Aug 9, 2019Updated 6 years ago
• sonofagl1tch / MalwareResearch

  View on GitHub
  This directory contains random scripts from threat hunting or malware research
  ☆11Feb 15, 2018Updated 8 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules

  View on GitHub
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆60Mar 2, 2025Updated last year
• EspressoCake / MITRE_ATTACK_CLI

  View on GitHub
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆17Jan 5, 2023Updated 3 years ago
• stromwise / Ethical-Hacking

  View on GitHub
  ETHICAL-HACKING
  ☆13Dec 20, 2023Updated 2 years ago
• quitehacker / MITRE-ATTACK-Enterprise-Matrix-in-Excel-for-SOC

  View on GitHub
  The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…
  ☆36Nov 13, 2025Updated 6 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• openwall / phpass

  View on GitHub
  Legacy password hashing framework for PHP applications needing to support or having previously supported PHP below 5.5
  ☆15Nov 22, 2024Updated last year
• openwall / pwned-passwords-sampler

  View on GitHub
  Generate representative samples from Pwned Passwords (HIBP)
  ☆11Jan 6, 2022Updated 4 years ago
• aws-samples / drs-malware-scan

  View on GitHub
  Perform file-based malware scan on your on-prem servers with AWS
  ☆14Oct 31, 2023Updated 2 years ago
• WiredPulse / EIF_Parser

  View on GitHub
  Evil Inject Finder Remote Capability and Parser
  ☆11Nov 22, 2018Updated 7 years ago
• infosecB / detection-as-code

  View on GitHub
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆61Mar 12, 2022Updated 4 years ago
• openwall / john-tests

  View on GitHub
  Test Suite for John the Ripper
  ☆26Dec 28, 2025Updated 5 months ago
• easttimor / aws-incident-response

  View on GitHub
  ☆377Feb 23, 2024Updated 2 years ago
• cedowens / Swift-Attack

  View on GitHub
  Unit tests for blue teams to aid with building detections for some common macOS post exploitation methods.
  ☆109Oct 29, 2022Updated 3 years ago
• tstillz / cbr-timeliner

  View on GitHub
  Quick script to build host or investigation timelines using Carbon Black Response
  ☆12Sep 25, 2018Updated 7 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• ex0dus-0x / confine

  View on GitHub
  Small container runtime for threat detection
  ☆14Apr 13, 2025Updated last year
• mthcht / ThreatHunting-Keywords-yara-rules

  View on GitHub
  yara detection rules for hunting with the threathunting-keywords project
  ☆162May 11, 2025Updated last year
• openwall / crypt_blowfish

  View on GitHub
  Implementation of bcrypt password hashing scheme
  ☆13Jan 11, 2021Updated 5 years ago
• ItzHerbie / KQL

  View on GitHub
  Detection rules and threat hunting queries in Defender XDR and Azure Sentinel
  ☆17Mar 13, 2026Updated 2 months ago
• Cluster25 / detection

  View on GitHub
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆14Jan 23, 2024Updated 2 years ago
• s0cm0nkey / s0cm0nkey.github.io

  View on GitHub
  ☆31Feb 10, 2023Updated 3 years ago
• tianyulab / ThreatDetectionRules

  View on GitHub
  威胁检测规则集
  ☆15Jul 5, 2019Updated 6 years ago
• KasperFridolin / mysql_forensics

  View on GitHub
  Scripts and Modules for forensical analyses of mysql database systems
  ☆22Sep 19, 2014Updated 11 years ago
• aws-samples / aws-scaling-threat-detection-workshop-jp

  View on GitHub
  A hands-on workshop to learn how to do threat detection and response in AWS.
  ☆11Sep 13, 2021Updated 4 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• ine-labs / ThreatSeeker

  View on GitHub
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆123May 16, 2023Updated 3 years ago
• grahamhelton / dehashQuery

  View on GitHub
  A script used to query the dehashed API and filter for more useful results
  ☆16Jun 20, 2021Updated 4 years ago
• splunk / security_content_docs

  View on GitHub
  Contains research.splunk.com site code
  ☆11Apr 10, 2024Updated 2 years ago
• aws-samples / aws-security-hub-csv-manager

  View on GitHub
  CSV Manager for AWS Security Hub exports SecurityHub findings to a CSV file and allows you to mass-update SecurityHub findings by modifyi…
  ☆18Jul 23, 2025Updated 10 months ago
• szymon1118 / logon_backdoor

  View on GitHub
  automated sticky keys backdoor
  ☆10Feb 12, 2016Updated 10 years ago
• rek7 / patchy

  View on GitHub
  Automated Persistence and Lateral Movement using GCP Patch Management
  ☆16Aug 11, 2022Updated 3 years ago
• carlospolop / aws-Perms2ManagedPolicies

  View on GitHub
  ☆14Jul 21, 2024Updated last year