CTI-Driven / Advanced-Threat-Hunting-Ransomware-Groups-AffiliatesView external linksLinks
Advanced Threat Hunting: Ransomware Group
☆29Jul 9, 2025Updated 7 months ago
Alternatives and similar repositories for Advanced-Threat-Hunting-Ransomware-Groups-Affiliates
Users that are interested in Advanced-Threat-Hunting-Ransomware-Groups-Affiliates are comparing it to the libraries listed below
Sorting:
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- This Repository gives the best and possible strategies against hunting the ransomware☆26Aug 23, 2022Updated 3 years ago
- ☆12Feb 9, 2025Updated last year
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆115Oct 29, 2024Updated last year
- Open source HIDS tailored for Microsoft Windows and Active Directory☆29Updated this week
- KQL Sentinel and Defender Detection and Hunting Queries.☆15Feb 4, 2026Updated last week
- Repository with Hunting and Detection Queries for Microsoft Sentinel and Microsoft Defender XDR☆16Nov 7, 2025Updated 3 months ago
- Ian Hanley's deceptively simple KQL queries.☆68Dec 27, 2025Updated last month
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆17May 11, 2025Updated 9 months ago
- KQL Queries for Advanced Hunting / Log Analytics☆13Jan 29, 2026Updated 2 weeks ago
- ☆96Jan 7, 2026Updated last month
- Security Scripts and Sources for daily usage.☆73Jan 25, 2026Updated 2 weeks ago
- ☆36Nov 11, 2025Updated 3 months ago
- ☆17Jul 20, 2024Updated last year
- Smarter Asset Search, Faster Information Extraction ZoomEye GPT is a browser extension designed specifically for cybersecurity profession…☆24Apr 30, 2025Updated 9 months ago
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆29Aug 4, 2025Updated 6 months ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆194Dec 22, 2025Updated last month
- KQL Queries☆30Updated this week
- This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team☆20Oct 9, 2024Updated last year
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- ☆50Nov 14, 2025Updated 3 months ago
- This repository contains various public projects created by the owners of Hybrid Brothers☆21Nov 3, 2023Updated 2 years ago
- Data breaches, Leaks, Malwares Forums List <Please Use Vpn/TOR don't click on Link directly bad OPSEC>☆58Sep 18, 2025Updated 4 months ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Nov 27, 2020Updated 5 years ago
- Advanced Hunting Queries for Microsoft Security Products☆108Jan 10, 2023Updated 3 years ago
- Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting☆68Dec 7, 2025Updated 2 months ago
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆49Jun 21, 2025Updated 7 months ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Apr 13, 2018Updated 7 years ago
- List of Awesome Vertex Synapse Resources☆28Aug 6, 2024Updated last year
- Sharing my KQL queries for Azure Sentinel☆206Updated this week
- Practical Threat Detection Engineering, Published by Packt☆84Jul 3, 2023Updated 2 years ago
- Aftermath is a free macOS incident response framework☆34Sep 25, 2025Updated 4 months ago
- A massive collection of Cybersecurity papers, guides and reports.☆10Jan 3, 2025Updated last year
- Digital Forensics Artifacts Knowledge Base☆89Dec 23, 2025Updated last month
- Resources, tools and utilities about Threat Intelligence☆82Mar 18, 2023Updated 2 years ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆121Updated this week
- A collection of ARM-based detections for Azure/AzureAD based TTPs☆89Dec 12, 2023Updated 2 years ago
- Hunting Queries for Defender ATP☆83Dec 14, 2025Updated 2 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆277Dec 20, 2025Updated last month