Alternatives and similar repositories for ThreatHound:

Users that are interested in ThreatHound are comparing it to the libraries listed below

• tianyulab / Threat_Hunting_with_ELK
  天御攻防实验室 - 威胁猎杀实战系列
  ☆102Updated 5 years ago
• GroupT00 / SecNews
  SecNews 文章分享系统
  ☆15Updated 6 years ago
• tianyulab / Hunting_lateral_movement
  《横向移动攻击与检测技术》专栏文章
  ☆16Updated 5 years ago
• ysrc / shelldaddy
  跨平台 webshell 静态扫描器
  ☆34Updated 7 years ago
• b0bac / SecurityTools
  日常积累的安全工具与代码、脚本
  ☆45Updated 2 months ago
• LennyLeng / SOC_Sankey_Generator
  ☆56Updated 4 years ago
• grayddq / FileCheck
  本脚本是HIDS组成的一部分，旨在对指定监控目录进行文件hash记录，定时运行，发现文件替换、修改等后门可疑程序。
  ☆13Updated 7 years ago
• havysec / vulnerable-scene
  一些漏洞场景的还原，基于https://www.exploit-db.com/
  ☆36Updated 7 years ago
• pyphrb / fuckCoreMail
  fuck
  ☆24Updated 9 years ago
• master3values / Attack-Cloud
  Att&ck Cloud相关
  ☆21Updated 4 years ago
• superhuahua / xunfengES
  ☆64Updated 7 years ago
• sdlchina / sdlchina-web
  SDL China
  ☆33Updated 6 years ago
• QiAnXinCodeSafe / Legendsec
  奇安信报开源软件漏洞cve所用目录。每个人报漏洞请建立自己的目录。
  ☆45Updated 5 years ago
• penoxcn / VMware
  ☆21Updated 7 years ago
• netxfly / docker-remote-api-exp
  docker remote api未授权访问的利用代码
  ☆50Updated 8 years ago
• yangyangwithgnu / ruadmin
  ruadmin is a logon *Brute Force* tool, for windows privilege escalation, but also system management.
  ☆95Updated 6 years ago
• MisakiKata / watchfile
  基于inotify的Linux文件实时监控程序，同时调用河马扫描来检测文件
  ☆22Updated 4 years ago
• tonghuaroot / ReShellAAS
  Reverse Shell as a Service
  ☆67Updated 4 years ago
• NewBee119 / check_ip
  check_IP is to judge whether a IP is malicious based on open threat intelligence，基于开源威胁情报AlienVault，排查IP地址及域名的恶意性
  ☆51Updated 6 years ago
• 3xp10it / xwebshell
  免杀webshell
  ☆37Updated 4 years ago
• bit4woo / ReSign
  A burp extender that recalculate signature value automatically after you modified request parameter value.
  ☆60Updated 2 years ago
• Kutim / docker-security
  docker 安全基线规范
  ☆90Updated 6 years ago
• ibey0nd / NSTProxy
  一款存储HTTP请求入库的burpsuite插件
  ☆29Updated 6 years ago
• sisoc-tokyo / Real-timeDetectionAD_journal
  ☆24Updated 4 years ago
• phantom0301 / PTEye
  Phantom eye——A passive business logic vulnerability auditing tool
  ☆56Updated 5 years ago
• p1r06u3 / opencanary
  Modular and decentralised honeypot
  ☆33Updated 4 years ago
• xisafe / suricata-rule
  suricata IDS的规则，测试在用的，部分自写的规则视情况放出。
  ☆18Updated 5 years ago
• bit4woo / DNSLog
  DNSLog 是一款监控 DNS 解析记录和 HTTP 访问记录的工具。
  ☆45Updated 4 years ago
• Green-m / dark-shell
  Shell say no to NIDS
  ☆71Updated 5 years ago
• XiaoXiaoGuaiXiaShi / OpenSource-HoneyPot
  对开源蜜罐的学习研究与理解
  ☆55Updated 4 years ago