b3b0 / snipehuntLinks
π¦π¬A small PowerShell tool for finding information quickly on malicious IPs or FQDNs. Powershell threat hunting.
β11Updated 5 years ago
Alternatives and similar repositories for snipehunt
Users that are interested in snipehunt are comparing it to the libraries listed below
Sorting:
- PowerShell Memory Pulling scriptβ19Updated 10 years ago
- A few quick recipes for those that do not have much time during the dayβ22Updated 9 months ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.β24Updated last year
- β13Updated 5 years ago
- Notebooks created to attack and secure Active Directory environmentsβ27Updated 5 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.β34Updated 6 years ago
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whicβ¦β56Updated 7 years ago
- β30Updated 6 years ago
- A script to assist in processing forensic RAM captures for malware triageβ27Updated 4 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.β23Updated 8 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online toolsβ27Updated 5 years ago
- All the useful tools interesting to be usedβ23Updated 2 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queriesβ49Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parserβ23Updated 4 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Pageβ14Updated 3 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.β37Updated 2 years ago
- THOR MITRE ATT&CK Framework Coverageβ25Updated 5 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigationβ23Updated 8 months ago
- Generic Signature Format for SIEM Systemsβ14Updated 3 years ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platformβ16Updated 6 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.β35Updated 3 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.β38Updated 3 years ago
- Sharing Threat Hunting runbooksβ26Updated 6 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.β32Updated 5 years ago
- Automatic Sender Policy Framework Reconnaissanceβ19Updated 7 years ago
- Traceroute improved wrapper for CSIRT and CERT operatorsβ38Updated 10 months ago
- Submits multiple domains to VirusTotal APIβ60Updated 3 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my blβ¦β55Updated 7 years ago
- Clean public password dump files and store in ELKβ38Updated 7 years ago
- Windows Security Loggingβ43Updated 3 years ago