Web based S1 query navigator for one-click threat hunting
☆26Dec 18, 2020Updated 5 years ago
Alternatives and similar repositories for SentinelOne-Query-Navigator
Users that are interested in SentinelOne-Query-Navigator are comparing it to the libraries listed below
Sorting:
- Repository of SentinelOne Deep Visibility queries.☆136Jun 30, 2021Updated 4 years ago
- MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity☆92Jan 11, 2021Updated 5 years ago
- ☆17Jan 22, 2026Updated last month
- ☆71Jun 20, 2023Updated 2 years ago
- ☆19Nov 26, 2024Updated last year
- Creating them Golden Tickets☆14Aug 16, 2025Updated 7 months ago
- This is a backup/test setup for the /r/ActiveDirectory reddit wiki and resource posts.☆19Mar 5, 2026Updated 2 weeks ago
- ☆11Feb 9, 2023Updated 3 years ago
- IronPE is a Windows PE manual loader written in Rust for both x86 and x64 PE files.☆77Mar 10, 2026Updated last week
- ☆13Feb 22, 2017Updated 9 years ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Jul 23, 2024Updated last year
- Session material from my conference presentation at Live360\Techmentor in Orlando,November 2023☆11Nov 14, 2023Updated 2 years ago
- 🌌 Real-time threat detection for smart contracts☆10May 16, 2023Updated 2 years ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆68Apr 29, 2024Updated last year
- Complete translation (EN) of the leaked files related to Conti (chat)☆16Jan 19, 2023Updated 3 years ago
- Event Query Router☆12Aug 9, 2019Updated 6 years ago
- This directory contains random scripts from threat hunting or malware research☆11Feb 15, 2018Updated 8 years ago
- PowerShell script and workflow for creating and importing a Win32 package into Intune for the Microsoft 365 Apps☆22Mar 11, 2026Updated last week
- CLI Search for Security Operators of MITRE ATT&CK URLs☆17Jan 5, 2023Updated 3 years ago
- ETHICAL-HACKING☆12Dec 20, 2023Updated 2 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- Elastic version of SOC prime watcher rules☆30Oct 14, 2024Updated last year
- Perform file-based malware scan on your on-prem servers with AWS☆14Oct 31, 2023Updated 2 years ago
- High performance time ordered PCAP merging utility☆23Jun 20, 2022Updated 3 years ago
- Fairy Law - Compromise or disable EDR security solutions☆68Dec 1, 2025Updated 3 months ago
- Dockerized Zeek☆12Mar 9, 2024Updated 2 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- A lightweight Windows Prefetch file parser to extract programs' execution history☆68Jan 12, 2026Updated 2 months ago
- SentinelOne STAR Rules☆74Feb 11, 2025Updated last year
- Test Suite for John the Ripper☆25Dec 28, 2025Updated 2 months ago
- Some Python SentinelOne API request examples and UI☆16May 16, 2018Updated 7 years ago
- Quick script to build host or investigation timelines using Carbon Black Response☆12Sep 25, 2018Updated 7 years ago
- FreeNAC provides dynamic vlan assignment, live inventory and LAN access control for Cisco Switches and all kinds of Network devices (PC, …☆30Nov 4, 2013Updated 12 years ago
- Small container runtime for threat detection☆14Apr 13, 2025Updated 11 months ago
- Cloud threat detection visualization from excalidraw☆12Apr 25, 2022Updated 3 years ago
- Implementation of bcrypt password hashing scheme☆12Jan 11, 2021Updated 5 years ago
- This repository contains Splunk queries to hunt some anomalies☆46Jul 28, 2022Updated 3 years ago
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Mar 13, 2026Updated last week
- Threat Detection Rules (Snort/Sigma/Yara)☆14Jan 23, 2024Updated 2 years ago