olafhartong/SA-Threat-Hunting external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

olafhartong/SA-Threat-Hunting

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/olafhartong/SA-Threat-Hunting)

Close

olafhartong / SA-Threat-HuntingView on GitHubMore

• External links
• Readme badge

Splunk app for Threat hunting

☆15Nov 15, 2018Updated 7 years ago

Alternatives and similar repositories for SA-Threat-Hunting

Users that are interested in SA-Threat-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• DerekKing / splunk_dns_analytics

  View on GitHub
  Splunk Searches and Dashboards for DNS Threat Hunting
  ☆10Mar 5, 2018Updated 8 years ago
• rcobb76101 / bulk_volatility_scanner

  View on GitHub
  Python script to run battery of Volatility plugins against a forensic memory image
  ☆10Jun 22, 2019Updated 6 years ago
• sfsinger19103 / election_anomaly

  View on GitHub
  See more current version at https://github.com/ElectionDataAnalysis/election_data_analysis/
  ☆10Jul 6, 2023Updated 2 years ago
• olafhartong / WDACme

  View on GitHub
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆30Jun 18, 2025Updated 9 months ago
• doksu / setops

  View on GitHub
  Set Operations App for Splunk
  ☆10Mar 29, 2021Updated 5 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• MHaggis / app_splunk_sysmon_hunter

  View on GitHub
  Splunk App to assist Sysmon Threat Hunting
  ☆38Mar 7, 2017Updated 9 years ago
• vector-sec / TA_ETW

  View on GitHub
  Splunk Technology Add-On (TA) for collecting ETW events from Windows systems
  ☆16Dec 8, 2022Updated 3 years ago
• MSAdministrator / carcass

  View on GitHub
  carcass is a Python package to generate python package scaffolding based on best practices
  ☆17Jan 10, 2022Updated 4 years ago
• splunk / addonfactory-ucc-library

  View on GitHub
  UCC Helper Library used by Splunk Add-ons
  ☆16Updated this week
• splunk / addonfactory-solutions-library-python

  View on GitHub
  SDK for Developing Solutions in Splunk Enterprise with Python
  ☆17Updated this week
• anthonws / WindowsDefenderATP-Hunting-Queries

  View on GitHub
  Sample queries for Advanced hunting in Windows Defender ATP
  ☆11Apr 22, 2020Updated 5 years ago
• mohlcyber / MISP-STIX-ESM

  View on GitHub
  Exports MISP events to STIX and ingest into McAfee ESM
  ☆15Feb 12, 2020Updated 6 years ago
• civictechdc / ancfinder

  View on GitHub
  A website about DC's Advisory Neighborhood Commission system.
  ☆43Apr 3, 2019Updated 6 years ago
• c2defense / network-device-logs

  View on GitHub
  Analytics for Accounting logs from Network devices
  ☆18Mar 27, 2021Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• IllusiveNetworks-Labs / HistoricProcessTree

  View on GitHub
  An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…
  ☆60Jan 30, 2018Updated 8 years ago
• jostuffl / AzureSentinel_Stuff

  View on GitHub
  A collection of things I've created or found that I think is useful for Azure Sentinel.
  ☆18Jan 28, 2026Updated 2 months ago
• inodee / threathunting-spl

  View on GitHub
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆292Jan 15, 2024Updated 2 years ago
• olafhartong / TA-Sysmon-deploy

  View on GitHub
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆32Jul 30, 2020Updated 5 years ago
• sketchymoose / TotalRecall

  View on GitHub
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49May 31, 2017Updated 8 years ago
• vector-sec / PSRemotingConfigurations

  View on GitHub
  A central place for me to share interesting PSRemoting configurations
  ☆16Jun 28, 2017Updated 8 years ago
• MHaggis / sysmon-splunk-app

  View on GitHub
  Sysmon Splunk App
  ☆47Aug 21, 2018Updated 7 years ago
• ashdsetty / Cloud-Security-Purple-Teaming

  View on GitHub
  ☆12Nov 3, 2020Updated 5 years ago
• aarju / Kibana_ForensicDashboards

  View on GitHub
  Dashboards for conducting forensic investigation using windows events in Kibana
  ☆18Apr 6, 2019Updated 6 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• 3had0w / Antivirus-detection

  View on GitHub
  Show AV Processes list
  ☆15Sep 30, 2020Updated 5 years ago
• NSLog0 / java-image-processing-algorithm

  View on GitHub
  ☆15Mar 24, 2017Updated 9 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist

  View on GitHub
  ☆20May 30, 2025Updated 10 months ago
• 0sm0s1z / Invoke-SelfSignedWebRequest

  View on GitHub
  This repo exists as a quick and dirty arsenal of methods and scripts to subvert .NET SSL/TLS certificate validation in PowerShell and pre…
  ☆12Jan 28, 2017Updated 9 years ago
• olafhartong / detection-sources

  View on GitHub
  ☆53Mar 4, 2019Updated 7 years ago
• AV1080p / solana-dex-info

  View on GitHub
  Solana Dex Info for arbitrage bot
  ☆18Sep 6, 2025Updated 6 months ago
• truekonrads / kpulp

  View on GitHub
  Konrads' Pen-Ultimate (Windows) Log File Parser
  ☆14Dec 27, 2025Updated 3 months ago
• deadbits / llm-tools

  View on GitHub
  Small tools to assist with using Large Language Models
  ☆12Nov 7, 2023Updated 2 years ago
• rkovar / splunk-hunting-helpers

  View on GitHub
  ☆55Mar 2, 2022Updated 4 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• BorjaMerino / DoublePulsar-Volatility

  View on GitHub
  Volatility plugin to help identify DoublePulsar implant by listing the array of pointers SrvTransaction2DispatchTable from the srv.sys dr…
  ☆16Aug 14, 2017Updated 8 years ago
• mlr0p / CVE-2021-33564

  View on GitHub
  Argument Injection in Dragonfly Ruby Gem
  ☆16May 26, 2021Updated 4 years ago
• redcanaryco / cb-response-smb1-utility

  View on GitHub
  A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.
  ☆15May 28, 2019Updated 6 years ago
• magicsword-io / Magic-SigExplorer

  View on GitHub
  ☆15Sep 24, 2024Updated last year
• gwalkey / SSRS_Subscriptions

  View on GitHub
  Create, Delete, List SQL Server Reporting Services Subscriptions using Powershell and SOAP
  ☆10Apr 12, 2018Updated 7 years ago
• farshadghodsian / Ansible-Windows-Playbooks

  View on GitHub
  Examples of various Ansible Playbooks for Microsoft Windows Server 2016
  ☆10Mar 3, 2019Updated 7 years ago
• LiviusNL / vault-plugin-secrets-ccp

  View on GitHub
  CyberArk Credentials Provider (CCP) Plugin for HashiCorp Vault
  ☆17Jan 12, 2024Updated 2 years ago