paranoidninja / Threat-HuntingLinks
This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories which are in their own, different modules required for threat hunting. This repo will be updated as and when new changes are made.
☆56Updated 7 years ago
Alternatives and similar repositories for Threat-Hunting
Users that are interested in Threat-Hunting are comparing it to the libraries listed below
Sorting:
- ☆81Updated 5 years ago
- PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…☆55Updated 10 months ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆51Updated 6 years ago
- ☆76Updated 7 years ago
- A collection of scripts that I've written while pentesting.☆31Updated 7 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- AvBuster The stress Tester for your Anti Malware solutions☆41Updated 4 years ago
- Web Filter External Enumeration Tool (WebFEET)☆77Updated 11 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Linux setup tool for Kali Linux☆79Updated 7 years ago
- A fileless Windows keylogger that exfils via DNS.☆33Updated 8 years ago
- OSSEM Modular☆27Updated 5 years ago
- Slack/Microsoft Teams notification for new Empire/Meterpreter checkins☆25Updated 10 months ago
- Clean public password dump files and store in ELK☆38Updated 7 years ago
- Executes common PowerSploit Powerview functions then combines output into a spreadsheet for easy analysis.☆69Updated 7 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- OG Atomic Red Team☆29Updated 7 years ago
- A powershell script that prints a lot of IP and connection info to the screen☆31Updated 8 years ago
- A simple tool to detect NBT-NS and LLMNR spoofing (and messing with them a bit)☆36Updated 6 years ago
- A collection of random bits of information common to many individual penetration tests, red teams, and other assessments☆110Updated 10 months ago
- Open Source - Common Findings DataBase (JSON & MD)☆68Updated 3 years ago
- NCC Group Ransomware Simulator☆69Updated 9 years ago
- rules to identify files containing juicy information like usernames, passwords etc☆127Updated 7 years ago
- DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).☆16Updated 5 years ago
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆127Updated 7 years ago
- SilkETW & SilkService☆40Updated 6 years ago
- Win32 utility for auditing TCP connections☆56Updated 5 years ago
- This module mangles two lists of names together to generate a list of potential email addresses or usernames. It can also be used to simp…☆50Updated 8 years ago