Theat hunting notes in flat file format and mapped to MITRE's ATT&CK IDs
☆43Oct 21, 2018Updated 7 years ago
Alternatives and similar repositories for threat_hunting_tables
Users that are interested in threat_hunting_tables are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Auxiliary scripts for Incident Response with ELK☆11Oct 7, 2015Updated 10 years ago
- LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network☆74Jul 9, 2019Updated 6 years ago
- Reference sheet for Threat Hunting Professional Course☆26Mar 10, 2019Updated 7 years ago
- ☆10Dec 19, 2017Updated 8 years ago
- PowerShell module to play with Kerberos S4U extensions☆23Sep 14, 2017Updated 8 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Use DNS to hunt for threats including DGAs☆15Jan 4, 2016Updated 10 years ago
- Presentation Slides☆26Jun 7, 2019Updated 6 years ago
- Simple web frontend to an elasticsearch database made for local files indexing☆19Oct 25, 2019Updated 6 years ago
- ☆49Jan 13, 2020Updated 6 years ago
- Threat Hunting is time consuming enough as it is. Coming up with and tracking metrics to justify your hunt team to the Execs often takes…☆13Dec 7, 2022Updated 3 years ago
- Crack your macros like the math pros.☆33Feb 14, 2017Updated 9 years ago
- ☆13Feb 6, 2018Updated 8 years ago
- ☆14Jun 26, 2020Updated 5 years ago
- C# Situational Awareness Script☆34Apr 26, 2019Updated 6 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Squirtle the Browser-based NTLM Attack Toolkit☆17Apr 13, 2015Updated 10 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆36Dec 9, 2019Updated 6 years ago
- DNS over HTTPS Servers☆13Nov 19, 2018Updated 7 years ago
- Burp Suite Professional extension in Java for Tabnabbing attack☆13May 8, 2018Updated 7 years ago
- A repository that maps API calls to Sysmon Event ID's.☆121Nov 14, 2022Updated 3 years ago
- A simple example application to collect DNS queries logs using etw-api☆27May 11, 2020Updated 5 years ago
- Alert when a issuer, or domain changes for a signed certificate☆13Dec 8, 2022Updated 3 years ago
- Dump LSASS process in Task Manager without triggering Defender.☆18Apr 6, 2023Updated 2 years ago
- Track C2 servers, tools, and botnets over time by framework and location☆43Feb 9, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- ☆30Nov 15, 2018Updated 7 years ago
- PowerShell based Active Directory Honey User Account Management with Universal Dashboards☆140Jun 26, 2019Updated 6 years ago
- POC for utilizing wikipedia API for Command and Control☆28Dec 8, 2022Updated 3 years ago
- The Open Command and Control Forum promotes the global development and adoption of the OpenC2 language and reference material.☆30May 25, 2017Updated 8 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Jul 27, 2022Updated 3 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆100Aug 7, 2020Updated 5 years ago
- Alternative password shadowing scheme☆10Feb 22, 2026Updated last month
- Threat Detection System using Hybrid (Machine Learning + Lexical Analysis) learning Approach.☆11May 30, 2017Updated 8 years ago
- Misc Threat Hunting Resources☆377Jan 26, 2023Updated 3 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆11Feb 9, 2023Updated 3 years ago
- Quick scan to find live hosts on the network/across networks☆48Jul 4, 2014Updated 11 years ago
- Use Markov Chains to obfuscate data as other data☆54Aug 3, 2016Updated 9 years ago
- A tool suite for use during system assessments.☆35May 29, 2025Updated 10 months ago
- Virtual scenario for Network Penetration Testing☆14Mar 19, 2017Updated 9 years ago
- A CALDERA plugin☆81Mar 18, 2026Updated last week
- ☆42Apr 22, 2021Updated 4 years ago