Alternatives and similar repositories for YetiHunter

Users that are interested in YetiHunter are comparing it to the libraries listed below

• referefref / sinon
  Automation tool for Windows Deception Host Burn-In
  ☆86Updated last year
• MFMokbel / Crawlector
  Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
  ☆124Updated last month
• Permiso-io-tools / LogLicker
  Tool for obfuscating and deobfuscating data.
  ☆75Updated last year
• SygniaLabs / Mirage
  ☆75Updated 10 months ago
• FogSecurity / yes3-scanner
  YES3 Scanner: S3 Security Scanner for Access and Ransomware Protection
  ☆101Updated last month
• yaaras / honeybee
  Create honeypots for cloud environments
  ☆110Updated 4 months ago
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆50Updated 11 months ago
• elastic / SWAT
  ☆169Updated 4 months ago
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆113Updated last year
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆84Updated 2 weeks ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆135Updated last year
• grahamhelton / IMDSpoof
  IMDSPOOF is a cyber deception tool that spoofs the AWS IMDS service to return HoneyTokens that can be alerted on.
  ☆106Updated 2 years ago
• ayushpriya10 / IMDShift
  ☆55Updated 2 years ago
• Permiso-io-tools / cloudtail
  ☆30Updated 3 weeks ago
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆58Updated 2 months ago
• HarshVaragiya / aws-redteam-kit
  A PoC to Simulate Ransomware Attack on AWS Environment
  ☆32Updated last year
• adelapazborrero / slack_jack
  Hijack a slack bot to phish your way in
  ☆57Updated 6 months ago
• brandon-t-elliott / cve2epss
  A simple web app to get the latest EPSS data for a CVE ID
  ☆12Updated last month
• mrwadams / otx-mcp
  ☆20Updated 10 months ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated last year
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆56Updated 3 months ago
• redhuntlabs / antisquat
  ☆56Updated last year
• Permiso-io-tools / capiche
  ☆18Updated last week
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆38Updated last month
• 0xB455 / m365-fatigue
  ☆76Updated last year
• infosecB / Rulehound
  An index of publicly available and open-source threat detection rulesets.
  ☆131Updated 9 months ago
• VirtueSecurity / IAMhounddog
  A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…
  ☆142Updated 2 months ago
• Permiso-io-tools / RansomWhen
  RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…
  ☆60Updated last year
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆101Updated 2 years ago
• silverfort-open-source / latma
  ☆80Updated 2 years ago