MazX0p / ThreatHound
☆159Updated last year
Alternatives and similar repositories for ThreatHound:
Users that are interested in ThreatHound are comparing it to the libraries listed below
- Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].☆150Updated 2 years ago
- Active C&C Detector☆153Updated last year
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Updated 11 months ago
- Default Detections for EDR☆96Updated last year
- Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.☆164Updated 6 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆119Updated last year
- An open-source self-hosted purple team management web application.☆267Updated 2 weeks ago
- ☆97Updated 3 years ago
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆136Updated last month
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆183Updated 3 months ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- Blue Team detection lab created with Terraform and Ansible in Azure.☆153Updated 4 months ago
- Sigma rules to share with the community☆119Updated 2 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 7 months ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆100Updated 7 months ago
- https://lolad-project.github.io/☆73Updated 3 months ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated last year
- Some Threat Hunting queries useful for blue teamers☆125Updated 2 years ago
- A Azure Exploitation Toolkit for Red Team & Pentesters☆165Updated last year
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆106Updated 2 years ago
- A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…☆101Updated last year
- IOC Collection 2022☆57Updated 2 years ago
- MSSprinkler is a password spraying utility for organizations to test their Microsoft Online accounts from an external perspective. It emp…☆74Updated last month
- Completely Risky Active-Directory Simulation Hub☆99Updated last year
- LDAP enumeration tool implemented in Python3☆226Updated 6 months ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆123Updated 2 months ago
- yara detection rules for hunting with the threathunting-keywords project☆116Updated last month
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆88Updated last year
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆151Updated last year
- ☆120Updated last year