schwartz1375/Threat-Hunting-in-AWS external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

schwartz1375/Threat-Hunting-in-AWS

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/schwartz1375/Threat-Hunting-in-AWS)

Close

schwartz1375 / Threat-Hunting-in-AWSView on GitHubMore

• External links
• Readme badge

☆37Aug 23, 2022Updated 3 years ago

Alternatives and similar repositories for Threat-Hunting-in-AWS

Users that are interested in Threat-Hunting-in-AWS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nuryslyrt / AttackImaginator

  View on GitHub
  LLM Supported Attack Scenario Creator from Code Review
  ☆14Oct 22, 2024Updated last year
• gsiddharth29 / Threat-Hunting

  View on GitHub
  Threat Hunt Investigation Methodology and Procedure
  ☆15Jul 11, 2022Updated 3 years ago
• BenjiTrapp / aws-threat-hunting

  View on GitHub
  Short deep dive into Threat Hunting on AWS
  ☆18Oct 15, 2023Updated 2 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing

  View on GitHub
  DNS Dashboard for hunting and identifying beaconing
  ☆16Jul 29, 2020Updated 5 years ago
• svch0stz / TheThreatHuntLibrary

  View on GitHub
  Library of threat hunts to get any user started!
  ☆50Sep 4, 2020Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• Yamato-Security / suzaku-rules

  View on GitHub
  ☆11Dec 9, 2025Updated 3 months ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet

  View on GitHub
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆21Jul 1, 2023Updated 2 years ago
• invictus-ir / Blue-team-app-Office-365-and-Azure

  View on GitHub
  ☆72Oct 21, 2024Updated last year
• Cyb3r-Monk / Cheat-Sheets

  View on GitHub
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Oct 7, 2022Updated 3 years ago
• PolitoInc / ELK-Hunting

  View on GitHub
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆65Oct 31, 2017Updated 8 years ago
• hiddenillusion / yara-goodies

  View on GitHub
  Useful scripts, rules etc. for use with YARA
  ☆27Feb 12, 2021Updated 5 years ago
• 5f0ne / pdf-examiner

  View on GitHub
  Provides an overview of the inner file structure of a PDF
  ☆24Sep 26, 2022Updated 3 years ago
• kev365 / ToolFetcher

  View on GitHub
  A tool for fetching DFIR and other GitHub tools.
  ☆27Aug 2, 2025Updated 7 months ago
• thremulation-station / thremulation-station

  View on GitHub
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆39Dec 17, 2025Updated 3 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• wayfair-incubator / malicious-chrome-extension-scanner

  View on GitHub
  Collect chrome extensions from various devices and find out if they are malicious
  ☆25Mar 1, 2026Updated 3 weeks ago
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆109Mar 9, 2026Updated 3 weeks ago
• opendxl / opendxl-console

  View on GitHub
  OpenDXL Console is a high-level web-based console for interacting with a DXL fabric
  ☆11Mar 29, 2021Updated 5 years ago
• amazon-science / TurboFuzzLLM

  View on GitHub
  TurboFuzzLLM: Turbocharging Mutation-based Fuzzing for Effectively Jailbreaking Large Language Models in Practice
  ☆23Nov 24, 2025Updated 4 months ago
• sans-blue-team / sec555-mdwiki-v1

  View on GitHub
  ☆12Jan 5, 2021Updated 5 years ago
• ogarrett / nginx-fips-check-module

  View on GitHub
  Basic NGINX module to report on OpenSSL FIPS status
  ☆10Jun 10, 2022Updated 3 years ago
• paladin316 / ThreatHunting

  View on GitHub
  This repo is where I store my Threat Hunting ideas/content
  ☆89Mar 20, 2026Updated last week
• mandiant / rpdebug_qnx

  View on GitHub
  ☆14Jun 1, 2023Updated 2 years ago
• sisoc-tokyo / mimikatz_detection

  View on GitHub
  ☆12Mar 24, 2018Updated 8 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• MzHmO / PPLDescribe

  View on GitHub
  Tool for obtaining information about PPL processes
  ☆16Feb 12, 2024Updated 2 years ago
• BishopFox / burpcage

  View on GitHub
  ☆10May 25, 2023Updated 2 years ago
• RiccardoAncarani / talks

  View on GitHub
  ☆43Jul 6, 2022Updated 3 years ago
• EmissarySpider / ransomware-descendants

  View on GitHub
  A repository dedicated to tracking ransomware families based on leaked builders.
  ☆22Apr 17, 2024Updated last year
• invictus-ir / Sigma-AWS

  View on GitHub
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Jul 12, 2023Updated 2 years ago
• RenderZ0n3 / Malware-Development

  View on GitHub
  ☆10Jul 1, 2023Updated 2 years ago
• fmadio / pcap_merge

  View on GitHub
  High performance time ordered PCAP merging utility
  ☆23Jun 20, 2022Updated 3 years ago
• Ignitetechnologies / myfiles

  View on GitHub
  Notes only
  ☆20May 2, 2022Updated 3 years ago
• somethingnew2-0 / SimpleCSPM

  View on GitHub
  GCP CSPM using Google Sheets
  ☆38Apr 4, 2025Updated 11 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• SAP / cloud-active-defense

  View on GitHub
  Add a layer of active defense to your cloud applications.
  ☆105Mar 21, 2026Updated last week
• corelight / zeek-quic

  View on GitHub
  Bro analyzer that detects Google's QUIC protocol
  ☆10Mar 2, 2021Updated 5 years ago
• Ninja-Tw1sT / misterch0cs_Shadowbroker_repo

  View on GitHub
  ☆11Apr 17, 2017Updated 8 years ago
• jakob-source / falcon-crowdstrike

  View on GitHub
  A collection of searches, interesting events and tables on Crowdstrike Splunk.
  ☆30Mar 2, 2021Updated 5 years ago
• teamdfir / sift-packer-legacy

  View on GitHub
  Packer.io Scripts to build the SIFT VM(s)
  ☆10Aug 29, 2020Updated 5 years ago
• temp43487580 / BAADTokenBroker

  View on GitHub
  BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.
  ☆63Mar 11, 2026Updated 2 weeks ago
• Brandon-Everhart / Practical-Malware-Analysis

  View on GitHub
  Personal notes and lab results pertaining to the text "Practical Malware Analysis" by Michael Sikorski and Andrew Honiq.
  ☆12Oct 28, 2017Updated 8 years ago