Sam0x90/CB-Threat-Hunting external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Sam0x90/CB-Threat-Hunting

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Sam0x90/CB-Threat-Hunting)

Close

Sam0x90 / CB-Threat-HuntingView on GitHubMore

• External links
• Readme badge

CarbonBlack EDR detection rules and response actions

☆73Sep 10, 2024Updated last year

Alternatives and similar repositories for CB-Threat-Hunting

Users that are interested in CB-Threat-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• CTI-Driven / Advanced-Threat-Hunting-Ransomware-Groups-Affiliates

  View on GitHub
  Advanced Threat Hunting: Ransomware Group
  ☆28Jul 9, 2025Updated 9 months ago
• 0xAnalyst / DefenderATPQueries

  View on GitHub
  Hunting Queries for Defender ATP
  ☆83Apr 1, 2026Updated 2 weeks ago
• Sam0x90 / CTI

  View on GitHub
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆82Apr 27, 2024Updated last year
• mbabinski / Sigma-Rules

  View on GitHub
  A repository of my own Sigma detection rules.
  ☆165Nov 25, 2025Updated 4 months ago
• cabve / CbR

  View on GitHub
  Queries for Carbon Black Response
  ☆11Feb 11, 2020Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• 0xAnalyst / CB-Threat-Hunting

  View on GitHub
  ☆115Jan 31, 2024Updated 2 years ago
• stuxnet999 / volatility-binaries

  View on GitHub
  Contains compiled binaries of Volatility
  ☆36May 18, 2025Updated 11 months ago
• mgreen27 / DetectRaptor

  View on GitHub
  A repository to share publicly available Velociraptor detection content
  ☆202Updated this week
• eSentire / iocs

  View on GitHub
  ☆56Apr 8, 2026Updated last week
• mthcht / awesome-lists

  View on GitHub
  Awesome Security lists for SOC/CERT/CTI
  ☆1,421Updated this week
• joeavanzato / velociraptor-timeline-creator

  View on GitHub
  VTC - Velociraptor Timeline Creator
  ☆19May 15, 2024Updated last year
• ine-labs / ThreatSeeker

  View on GitHub
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆123May 16, 2023Updated 2 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules

  View on GitHub
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆59Mar 2, 2025Updated last year
• svch0stz / velociraptor-detections

  View on GitHub
  ☆22Jan 31, 2023Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• Cyb3r-Monk / Threat-Hunting-and-Detection

  View on GitHub
  Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
  ☆810Jan 14, 2026Updated 3 months ago
• mrwadams / otx-mcp

  View on GitHub
  ☆20Apr 10, 2025Updated last year
• abdulshareef / DFIR-Resources

  View on GitHub
  Some important DFIR Resources
  ☆84Mar 16, 2023Updated 3 years ago
• mthcht / ThreatHunting-Keywords

  View on GitHub
  Awesome list of keywords and artifacts for Threat Hunting sessions
  ☆653Aug 4, 2025Updated 8 months ago
• Cyb3r-Monk / ACCD

  View on GitHub
  Active C&C Detector
  ☆156Oct 5, 2023Updated 2 years ago
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,682Updated this week
• Immersive-Labs-Sec / BruteRatel-DetectionTools

  View on GitHub
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Jul 7, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• ThisIsLibra / MalPull

  View on GitHub
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆30Apr 14, 2023Updated 3 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• mthcht / ThreatHunting-Keywords-yara-rules

  View on GitHub
  yara detection rules for hunting with the threathunting-keywords project
  ☆159May 11, 2025Updated 11 months ago
• BlackPerl-DFIR / IR-Cheatsheets

  View on GitHub
  This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team
  ☆20Oct 9, 2024Updated last year
• GabrielDuschl / SmartSpray

  View on GitHub
  A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…
  ☆17Jan 28, 2026Updated 2 months ago
• 0xAnalyst / Project-Lost

  View on GitHub
  Living Off Security Tools
  ☆60Nov 23, 2025Updated 4 months ago
• tsale / EDR-Telemetry-Website

  View on GitHub
  ☆73Apr 4, 2026Updated 2 weeks ago
• cyb3rmik3 / KQL-threat-hunting-queries

  View on GitHub
  A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…
  ☆766Aug 28, 2025Updated 7 months ago
• Azure / forensics

  View on GitHub
  ☆12Mar 28, 2026Updated 3 weeks ago
• SIFalcon / Detection

  View on GitHub
  ☆23Jul 7, 2023Updated 2 years ago
• Viuleeenz / Reversing_Notes

  View on GitHub
  Scripts to help and speed up reversing activities
  ☆13Jan 12, 2026Updated 3 months ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• LETHAL-FORENSICS / Collect-MemoryDump

  View on GitHub
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆255Oct 29, 2025Updated 5 months ago
• securityjoes / MasterParser

  View on GitHub
  MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
  ☆758Feb 1, 2026Updated 2 months ago
• blueteam0ps / memOptix

  View on GitHub
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆97May 28, 2023Updated 2 years ago
• JoasASantos / Physical-PenTest-Methodology

  View on GitHub
  Basic guide for performing a Physical PenTest - Nist 800-12, 800-53, 800-115, 800-152
  ☆23Jan 1, 2023Updated 3 years ago
• dfirence / ma-insights-xe

  View on GitHub
  User Feedback Space of #MitreAssistant
  ☆38May 19, 2023Updated 2 years ago
• StrangerealIntel / Orion

  View on GitHub
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆141Nov 19, 2023Updated 2 years ago
• The-DFIR-Report / Sigma-Rules

  View on GitHub
  Rules generated from our investigations.
  ☆207Jun 17, 2025Updated 10 months ago