Alternatives and similar repositories for ThreatHunter-Playbook

Users that are interested in ThreatHunter-Playbook are comparing it to the libraries listed below

• joda32 / got-responded
  A simple tool to detect NBT-NS and LLMNR spoofing (and messing with them a bit)
  ☆36Updated 6 years ago
• trustedsec / RisingSun
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆10Updated 4 years ago
• n3l5 / irMempull
  PowerShell Memory Pulling script
  ☆19Updated 10 years ago
• paranoidninja / Threat-Hunting
  This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…
  ☆56Updated 7 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆36Updated 6 years ago
• nccgroup / WebFEET
  Web Filter External Enumeration Tool (WebFEET)
  ☆77Updated 10 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• dafthack / blackhat-arsenal-tools
  Official Black Hat Arsenal Security Tools Repository
  ☆21Updated 7 years ago
• 0x4D31 / hassh-utils
  hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…
  ☆58Updated 9 months ago
• daguy666 / Transit
  MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.
  ☆20Updated 5 years ago
• mvelazc0 / PurpleSpray
  PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…
  ☆51Updated 5 years ago
• redhuntlabs / Maltego-Scripts
  ☆33Updated 5 months ago
• laconicwolf / random-python
  Various Python scripts that have come in handy but aren't important enough to get their own repository
  ☆22Updated 4 years ago
• Raikia / Get-ReconInfo
  A powershell script that prints a lot of IP and connection info to the screen
  ☆31Updated 8 years ago
• rshipp / ir-triage-toolkit
  Create an incident response triage toolkit for use with Windows or Linux.
  ☆17Updated 5 years ago
• thirdeyeintelligence / Tools-mindmap
  mindmap created for tools can be used during analysis/investigation
  ☆27Updated 8 years ago
• trustedsec / HoneyBadger
  ☆82Updated 5 years ago
• SerpicoProject / SerpicoPlugins
  Plugins for the Serpico Project
  ☆23Updated 6 years ago
• OneLogicalMyth / toolkit
  Collection of scripts and tools that I created to aid in my testing.
  ☆14Updated 3 years ago
• isaudits / pasv-agrsv
  Passive recon / OSINT automation script
  ☆39Updated 6 years ago
• dafthack / EmailAddressMangler
  This module mangles two lists of names together to generate a list of potential email addresses or usernames. It can also be used to simp…
  ☆50Updated 7 years ago
• dmb2168 / OAuthHunting
  ☆53Updated 7 years ago
• dutchcoders / lootbox
  Lootbox downloads open directories shared on Twitter.
  ☆35Updated 4 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆40Updated 8 years ago
• EbryxLabs / __DFIR-scripts
  Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment
  ☆14Updated 3 weeks ago
• ins1gn1a / Pwdlyser-CLI
  Python-based CLI Password Analyser (Reporting Tool)
  ☆33Updated 3 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Updated 3 years ago
• Mr-Un1k0d3r / SideChannelAttack
  Side Channel script
  ☆25Updated 2 years ago
• threatexpress / portplow
  PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…
  ☆54Updated 7 months ago
• triw0lf / urlscan_scripts
  A bunch of scripts I use to work with urlscan.io
  ☆34Updated 5 years ago