cyb3rmik3 / Hunting-ListsLinks
A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
☆34Updated 11 months ago
Alternatives and similar repositories for Hunting-Lists
Users that are interested in Hunting-Lists are comparing it to the libraries listed below
Sorting:
- MS Graph Commands and Tools for Blue Teamers☆50Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆48Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- Tools and scripts to deploy and manage OpenRelik instances☆14Updated last week
- Living off the False Positive!☆37Updated 4 months ago
- A simple tool designed to create Atomic Red Team tests with ease.☆44Updated 3 months ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆25Updated 3 months ago
- Baseline a Windows System against LOLBAS☆27Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated last month
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…☆31Updated 2 months ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆82Updated last year
- Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.☆39Updated 5 months ago
- CarbonBlack EDR detection rules and response actions☆71Updated 9 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆75Updated 2 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 3 months ago
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…☆26Updated 7 months ago
- ☆32Updated last year
- This Repository gives the best and possible strategies against hunting the ransomware☆26Updated 2 years ago
- Table of AD and Azure assets and whether they belong to Tier Zero☆27Updated last year
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆27Updated 11 months ago
- ☆73Updated last week
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆24Updated 3 weeks ago
- Pythia is a versatile query format designed to facilitate the discovery of malicious infrastructure by seamlessly converting into the syn…☆33Updated 10 months ago
- ☆24Updated 4 months ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- VTC - Velociraptor Timeline Creator☆18Updated last year
- Quick ESXi Log Parser☆21Updated 5 months ago
- msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…☆41Updated 3 months ago