schwartz1375/Threat-Hunting-in-AWS external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

schwartz1375/Threat-Hunting-in-AWS

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/schwartz1375/Threat-Hunting-in-AWS)

Close

schwartz1375 / Threat-Hunting-in-AWSView on GitHubMore

• External links
• Readme badge

☆38Aug 23, 2022Updated 3 years ago

Alternatives and similar repositories for Threat-Hunting-in-AWS

Users that are interested in Threat-Hunting-in-AWS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• gsiddharth29 / Threat-Hunting

  View on GitHub
  Threat Hunt Investigation Methodology and Procedure
  ☆15Jul 11, 2022Updated 3 years ago
• BenjiTrapp / aws-threat-hunting

  View on GitHub
  Short deep dive into Threat Hunting on AWS
  ☆19Oct 15, 2023Updated 2 years ago
• svch0stz / TheThreatHuntLibrary

  View on GitHub
  Library of threat hunts to get any user started!
  ☆50Sep 4, 2020Updated 5 years ago
• drk1wi / Red_Team

  View on GitHub
  Some scripts useful for red team activities
  ☆13Jan 18, 2020Updated 6 years ago
• mvelazc0 / Invoke-SMBLogin

  View on GitHub
  Validates username & password combination(s) across a host or group of hosts using the SMB protocol.
  ☆15Apr 6, 2020Updated 6 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Yamato-Security / suzaku-rules

  View on GitHub
  ☆11May 3, 2026Updated last week
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet

  View on GitHub
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆21Jul 1, 2023Updated 2 years ago
• invictus-ir / Blue-team-app-Office-365-and-Azure

  View on GitHub
  ☆72Oct 21, 2024Updated last year
• Cyb3r-Monk / Cheat-Sheets

  View on GitHub
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Oct 7, 2022Updated 3 years ago
• PolitoInc / ELK-Hunting

  View on GitHub
  Threat Hunting with ELK Workshop (InfoSecWorld 2017)
  ☆65Oct 31, 2017Updated 8 years ago
• hiddenillusion / yara-goodies

  View on GitHub
  Useful scripts, rules etc. for use with YARA
  ☆27Feb 12, 2021Updated 5 years ago
• 5f0ne / pdf-examiner

  View on GitHub
  Provides an overview of the inner file structure of a PDF
  ☆24Sep 26, 2022Updated 3 years ago
• kev365 / ToolFetcher

  View on GitHub
  A tool for fetching DFIR and other GitHub tools.
  ☆27Aug 2, 2025Updated 9 months ago
• thremulation-station / thremulation-station

  View on GitHub
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆39Dec 17, 2025Updated 4 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• wayfair-incubator / malicious-chrome-extension-scanner

  View on GitHub
  Collect chrome extensions from various devices and find out if they are malicious
  ☆25Mar 1, 2026Updated 2 months ago
• eSentire / iocs

  View on GitHub
  ☆57Apr 16, 2026Updated 3 weeks ago
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆111Mar 9, 2026Updated 2 months ago
• sercasti / aws-hardening

  View on GitHub
  Best practices for hardening your AWS account, most of them are free
  ☆35Mar 31, 2026Updated last month
• chlaplan / MDE-Monitoring-App

  View on GitHub
  Troubleshooting MDE Workstations
  ☆43May 1, 2026Updated last week
• amazon-science / TurboFuzzLLM

  View on GitHub
  TurboFuzzLLM: Turbocharging Mutation-based Fuzzing for Effectively Jailbreaking Large Language Models in Practice
  ☆24Nov 24, 2025Updated 5 months ago
• sans-blue-team / sec555-mdwiki-v1

  View on GitHub
  ☆12Jan 5, 2021Updated 5 years ago
• paladin316 / ThreatHunting

  View on GitHub
  This repo is where I store my Threat Hunting ideas/content
  ☆90Mar 20, 2026Updated last month
• mandiant / rpdebug_qnx

  View on GitHub
  ☆14Jun 1, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• g-les / floss2yar

  View on GitHub
  ☆15Sep 26, 2022Updated 3 years ago
• sisoc-tokyo / mimikatz_detection

  View on GitHub
  ☆12Mar 24, 2018Updated 8 years ago
• MzHmO / PPLDescribe

  View on GitHub
  Tool for obtaining information about PPL processes
  ☆16Feb 12, 2024Updated 2 years ago
• BishopFox / burpcage

  View on GitHub
  ☆10May 25, 2023Updated 2 years ago
• RiccardoAncarani / talks

  View on GitHub
  ☆43Jul 6, 2022Updated 3 years ago
• EmissarySpider / ransomware-descendants

  View on GitHub
  A repository dedicated to tracking ransomware families based on leaked builders.
  ☆22Apr 17, 2024Updated 2 years ago
• invictus-ir / Sigma-AWS

  View on GitHub
  This repository contains the research and components of our research into using Sigma for AWS Incident Response.
  ☆31Jul 12, 2023Updated 2 years ago
• RenderZ0n3 / Malware-Development

  View on GitHub
  ☆10Jul 1, 2023Updated 2 years ago
• NetSPI / PowerHunt

  View on GitHub
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆71Dec 12, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• Ignitetechnologies / myfiles

  View on GitHub
  Notes only
  ☆21May 2, 2022Updated 4 years ago
• lyvd / C2Ass

  View on GitHub
  A tiny tool to learn the assembly code
  ☆12Feb 17, 2017Updated 9 years ago
• Truvis / Suricata_Threat-Hunting-Rules

  View on GitHub
  Collection of Suricata rule sets that I use modified to my environments.
  ☆39Sep 13, 2020Updated 5 years ago
• denniskniep / interactsh_deploy

  View on GitHub
  Interactsh deployment to AWS EC2 Instance with Terraform
  ☆12Dec 29, 2021Updated 4 years ago
• somethingnew2-0 / SimpleCSPM

  View on GitHub
  GCP CSPM using Google Sheets
  ☆38Apr 4, 2025Updated last year
• SAP / cloud-active-defense

  View on GitHub
  Add a layer of active defense to your cloud applications.
  ☆106Updated this week
• RoqueNight / DefenderATP-Proactive-Threat-Hunting-Queries-KQL

  View on GitHub
  List of custom developed KQL queries to help proactive security teams hunt for opportunistic and sophisticated threat activity by develop…
  ☆26Jun 30, 2021Updated 4 years ago