ATHF is a framework for agentic threat hunting - building systems that can remember, learn, and act with increasing autonomy.
☆280May 22, 2026Updated last week
Alternatives and similar repositories for agentic-threat-hunting-framework
Users that are interested in agentic-threat-hunting-framework are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 7 months ago
- ☆62Feb 12, 2026Updated 3 months ago
- Fast Windows post-exploitation wins after initial access.☆29Jan 28, 2026Updated 4 months ago
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆20May 20, 2025Updated last year
- Some of the lab files for the SANS Institute course SEC505: Securing Windows and PowerShell Automation: https://sans.org/sec505☆18Jun 8, 2017Updated 8 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Bash tool used for proactive detection of malicious activity on macOS systems.☆38Sep 29, 2025Updated 8 months ago
- Command and Control that uses NTP as the transport protocol.☆25Jan 29, 2022Updated 4 years ago
- Online resources related to SOC Analysts. Incident investigation reference material, blogs, newsletters, good reads, books, trainings, po…☆57Feb 14, 2026Updated 3 months ago
- ☆10Sep 12, 2024Updated last year
- 🛡️ Detect and respond to security threats in real-time with God-Eye, an AI-driven tool designed for privacy and local deployment on mult…☆39Updated this week
- A Windows tool that converts LDIF files to BloodHound CE☆32Dec 20, 2025Updated 5 months ago
- A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, …☆29Feb 15, 2026Updated 3 months ago
- ☆22Jan 31, 2023Updated 3 years ago
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆20May 9, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Wordpress Plugin Canto < 3.0.5 - Remote File Inclusion (RFI) and Remote Code Execution (RCE)☆17Nov 24, 2023Updated 2 years ago
- Elastic Security Labs' malware analysis and reverse engineering library☆54Mar 10, 2026Updated 2 months ago
- AI-powered Windows Event Log analyzer that learns from your feedback. Uses Claude AI with RAG to detect suspicious activity, improve ac…☆37Dec 18, 2025Updated 5 months ago
- An interactive mock C2 server☆17Feb 25, 2023Updated 3 years ago
- The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…☆44Nov 7, 2020Updated 5 years ago
- Active C&C Detector☆156Oct 5, 2023Updated 2 years ago
- Portable Windows forensic tool for reviewing Firefox-like and Chromium-based browser artifacts, with labeling, search, CLI processing, an…☆57May 10, 2026Updated 2 weeks ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆70Dec 2, 2022Updated 3 years ago
- ELF Sectional docking payload injector system☆21Jun 28, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Security tools for purple team, AI security, and M365/GWS. Authorized use only.☆151May 12, 2026Updated 2 weeks ago
- Intelligent caching proxy for web scraping with SSL bumping, upstream proxy routing, and a web-based management interface.☆39Jan 10, 2026Updated 4 months ago
- A Claude Code Notification hook for MacOS that displays a toast message when Claude Code is waiting for the user to respond.☆17Jul 22, 2025Updated 10 months ago
- Repository for CoSAI workstream 2, Preparing Defenders for a Changing Cybersecurity Landscape☆60May 19, 2026Updated last week
- PowerShell tools to help defenders hunt smarter, hunt harder.☆483Oct 29, 2025Updated 7 months ago
- ☆75May 2, 2026Updated 3 weeks ago
- Deploy customizable Active Directory labs in Azure - automatically.☆426Dec 5, 2024Updated last year
- my MSTICpy practice and custom tools repository☆11Apr 23, 2025Updated last year
- A suite of tools to disrupt campaigns using the Sliver C2 framework.☆283Aug 5, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆27Jul 4, 2024Updated last year
- Repository for SPEED SIEM Use Case Framework☆60May 2, 2020Updated 6 years ago
- Automated Cloud Misconfiguration Testing☆25Jun 20, 2025Updated 11 months ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆116May 17, 2026Updated last week
- QRadar AQL backend for converting Sigma rules to QRadar AQL queries☆14Sep 18, 2025Updated 8 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆361May 21, 2026Updated last week
- CSharp4Pentesters☆11Mar 5, 2022Updated 4 years ago