Alternatives and similar repositories for Threat-Hunting

Users that are interested in Threat-Hunting are comparing it to the libraries listed below

• archanchoudhury / Threat-Hunting
  This Repository gives the best and possible strategies against hunting the ransomware
  ☆26Updated 2 years ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆15Updated 4 years ago
• McL0vinn / Windows-Forensic-Examination-and-Threat-Hunting
  Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…
  ☆11Updated 2 years ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆21Updated 2 years ago
• op7ic / OS.LAB
  Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…
  ☆19Updated last year
• Atomics-on-A-Friday / Emulation-Tools
  ☆32Updated 2 years ago
• NextronSystems / velociraptor-artifacts-thor
  Thor Artifacts for Velociraptor
  ☆16Updated last year
• loganflook / PowerShell-Scripts
  Repo to hold my PowerShell Scripts
  ☆17Updated 2 years ago
• BlackPerl-DFIR / IR-Cheatsheets
  This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team
  ☆19Updated 8 months ago
• elementalsouls / DumpLSASS
  ☆33Updated last year
• AlrikRr / ActiveDirectory_Lab
  Active DIrectory Lab for Pentesting Practice
  ☆24Updated 2 years ago
• Almorabea / Catalyzer
  A small tool that helps Incident responders and SOC analysts do a quick and initial analysis/assessment of malicious files
  ☆27Updated 2 years ago
• DefensiveOrigins / DO-LAB
  ☆47Updated 2 months ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 5 years ago
• mr-r3b00t / parse_win_log
  ☆14Updated 2 years ago
• 8L4NK / OSCP-10
  ☆24Updated 6 years ago
• timo123421 / Automatic-Intelligence-feed
  ☆34Updated 2 years ago
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• rj-chap / ransomware_tips
  Random tips and tricks RE: ransomware
  ☆14Updated 3 years ago
• idchoppers / redTeaming
  Assorted scripts I made for Red Teaming / Pen Testing
  ☆13Updated last year
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆63Updated 4 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated last year
• 3gbCyber / IR-Last-Write-Time
  Simple Script to Help You Find All Files Has Been Modified, Accessed, and Created In A Range Time.
  ☆27Updated 2 years ago
• deFr0ggy / PMAT-Labs-Walkthroughs
  Repo containing my personal walkthroughs of PMAT Labs i.e. PMAT Malware Samples.
  ☆43Updated 3 years ago
• infosecn1nja / TTPMapper
  TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…
  ☆27Updated this week
• d4rk-d4nph3 / Ransim
  Ransomware Simulator for testing Blue Team Detections
  ☆37Updated 3 years ago
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated 2 years ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆25Updated 3 months ago
• mamun-sec / NetDahar
  A network logging tool that logs per process activities
  ☆32Updated 2 years ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year