darkoperator / ThreatHunter-Playbook

Related projects ⓘ

Alternatives and complementary repositories for ThreatHunter-Playbook

• OneLogicalMyth / toolkit
  Collection of scripts and tools that I created to aid in my testing.
  ☆14Updated 2 years ago
• trustedsec / RisingSun
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆10Updated 3 years ago
• laconicwolf / random-python
  Various Python scripts that have come in handy but aren't important enough to get their own repository
  ☆22Updated 3 years ago
• joda32 / got-responded
  A simple tool to detect NBT-NS and LLMNR spoofing (and messing with them a bit)
  ☆35Updated 5 years ago
• dsnezhkov / foxtrot
  C&C to deliver files and shuttle command execution instructions between an external actor and an internal agent with the help of Firefox …
  ☆37Updated last year
• Fallenour / Venator
  Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…
  ☆21Updated 7 years ago
• nccgroup / WebFEET
  Web Filter External Enumeration Tool (WebFEET)
  ☆75Updated 10 years ago
• sans-blue-team / sec455-wiki
  ☆29Updated 6 years ago
• jaredhaight / scripts
  A collection of scripts that I've written while pentesting.
  ☆31Updated 6 years ago
• mikhbur / conformer
  Password Guessing for different Web Portals
  ☆29Updated 6 years ago
• dafthack / blackhat-arsenal-tools
  Official Black Hat Arsenal Security Tools Repository
  ☆21Updated 7 years ago
• NetSPI / SpoofSpotter
  A tool to catch spoofed NBNS responses.
  ☆49Updated 6 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆30Updated 2 years ago
• blackhatethicalhacking / Veil
  Veil 3.1.X (Check version info in Veil at runtime)
  ☆14Updated 5 years ago
• rollinz007 / kspray
  A utility for password spraying using kerberos from an untrusted/non-domain joined Kali linux host. Useful for user and KDC/DC enumeratio…
  ☆18Updated last year
• inishantgrover / Shodmon
  The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided
  ☆33Updated 3 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆36Updated 5 years ago
• digininja / sitediff
  Fingerprint a web app using local files as the fingerprint sources
  ☆36Updated 7 years ago
• l0ss / Get-GPTrashfire
  B-Sides CBR 2018 talk about group policy and Grouper
  ☆39Updated 5 years ago
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• PivotAll / PivotAll
  Comprehensive Pivoting Framework
  ☆20Updated 8 years ago
• isaudits / pasv-agrsv
  Passive recon / OSINT automation script
  ☆40Updated 6 years ago
• Raikia / Get-ReconInfo
  A powershell script that prints a lot of IP and connection info to the screen
  ☆30Updated 7 years ago
• spohara79 / TGT---Golden-Silver-Ticket
  Scripts to help hunt for possible golden/silver TGT tickets
  ☆16Updated 7 years ago
• codewatchorg / PowerSniper
  Password spraying script and helper for creating password lists
  ☆33Updated 4 years ago
• Beercow / ProcDOT-Plugins
  Plugins to add funtionality to ProcDOT. http://www.procdot.com
  ☆22Updated last year
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 9 years ago
• ZoomerTedJackson / Powershell-Domain-User-Enumeration
  ☆12Updated 8 years ago
• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆14Updated 8 years ago