b3b0 / snipehuntLinks
π¦π¬A small PowerShell tool for finding information quickly on malicious IPs or FQDNs. Powershell threat hunting.
β11Updated 5 years ago
Alternatives and similar repositories for snipehunt
Users that are interested in snipehunt are comparing it to the libraries listed below
Sorting:
- PowerShell Memory Pulling scriptβ19Updated 10 years ago
- Generic Signature Format for SIEM Systemsβ14Updated 4 years ago
- β30Updated 6 years ago
- Notebooks created to attack and secure Active Directory environmentsβ27Updated 5 years ago
- β13Updated 6 years ago
- evtx2json extracts events of interest from event logs, dedups them, and exports them to json.β42Updated 4 years ago
- My personal experience in Threat Hunting and knowledge gained so far.β19Updated 8 years ago
- A few quick recipes for those that do not have much time during the dayβ22Updated last year
- HoneyDB Python Moduleβ14Updated last year
- These are some of the commands which I use frequently during Malware Analysis and DFIR.β24Updated last year
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whicβ¦β56Updated 7 years ago
- A simple many-rules to many-files YARA scanner for incident response or malware zoos.β26Updated 7 years ago
- This module installs and configures MISP (Malware Information Sharing Platform)β13Updated 3 weeks ago
- Threat hunting repo for my independent study on threat hunting with OSQueryβ27Updated 7 years ago
- This repository is a curated list of pro bono incident response entities.β21Updated 2 years ago
- β33Updated 9 months ago
- Indicator of Compromise Scanner for CVE-2019-19781β94Updated 5 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.β35Updated 3 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.β37Updated 2 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.β35Updated 6 years ago
- Python parser for Red Canary's Atomic Red Team Yamlsβ27Updated 6 years ago
- A script to assist in processing forensic RAM captures for malware triageβ27Updated 4 years ago
- Deploy MISP Project software with Vagrant.β45Updated 5 years ago
- Collection of best practices to add OSINT into MISP and/or MISP communitiesβ66Updated 2 years ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.β23Updated 9 years ago
- Mitre Att&ck Technique Emulationβ82Updated 6 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)β52Updated 4 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parserβ23Updated 4 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.β32Updated 5 years ago
- THOR MITRE ATT&CK Framework Coverageβ25Updated 5 years ago