☆39Aug 23, 2022Updated 3 years ago
Alternatives and similar repositories for Threat-Hunting-in-AWS
Users that are interested in Threat-Hunting-in-AWS are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- LLM Supported Attack Scenario Creator from Code Review☆14Oct 22, 2024Updated last year
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 4 years ago
- DNS Dashboard for hunting and identifying beaconing☆17Jul 29, 2020Updated 5 years ago
- Library of threat hunts to get any user started!☆51Sep 4, 2020Updated 5 years ago
- This repository contains advanced threat hunting scripts for Cisco Secure Endpoint API. The scripts leverage the AMP API to hunt for thre…☆14Apr 21, 2026Updated 2 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆21Jul 1, 2023Updated 3 years ago
- ☆72Oct 21, 2024Updated last year
- Cheat sheets for threat hunting, detection and other stuff.☆34Oct 7, 2022Updated 3 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆65Oct 31, 2017Updated 8 years ago
- Useful scripts, rules etc. for use with YARA☆27Feb 12, 2021Updated 5 years ago
- Provides an overview of the inner file structure of a PDF☆24Sep 26, 2022Updated 3 years ago
- A tool for fetching DFIR and other GitHub tools.☆29Aug 2, 2025Updated 11 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆39Dec 17, 2025Updated 6 months ago
- Collect chrome extensions from various devices and find out if they are malicious☆25Jun 20, 2026Updated 3 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆61May 28, 2026Updated last month
- JPCERT/CC public YARA rules repository☆110Mar 9, 2026Updated 4 months ago
- OpenDXL Console is a high-level web-based console for interacting with a DXL fabric☆11Mar 29, 2021Updated 5 years ago
- Troubleshooting MDE Workstations☆44Jul 2, 2026Updated last week
- PowerShell script to retreive wifi ESSIDs and Passwords.☆26Jul 28, 2017Updated 8 years ago
- This repo is where I store my Threat Hunting ideas/content☆90Mar 20, 2026Updated 3 months ago
- ☆14Jun 1, 2023Updated 3 years ago
- ☆12Mar 24, 2018Updated 8 years ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆43Jul 6, 2022Updated 4 years ago
- A repository dedicated to tracking ransomware families based on leaked builders.☆22Apr 17, 2024Updated 2 years ago
- ☆10Jul 1, 2023Updated 3 years ago
- Windows DLL Loading Utility☆12Jun 11, 2020Updated 6 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆71Dec 12, 2024Updated last year
- ☆11Apr 29, 2022Updated 4 years ago
- A tiny tool to learn the assembly code☆12Feb 17, 2017Updated 9 years ago
- Notes only☆21May 2, 2022Updated 4 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆12Dec 29, 2021Updated 4 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- GCP CSPM using Google Sheets☆38Apr 4, 2025Updated last year
- Add a layer of active defense to your cloud applications.☆106Jul 2, 2026Updated last week
- ☆11Apr 17, 2017Updated 9 years ago
- ☆14Feb 12, 2026Updated 4 months ago
- A collection of searches, interesting events and tables on Crowdstrike Splunk.☆30Mar 2, 2021Updated 5 years ago
- BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys.☆82Apr 11, 2026Updated 3 months ago
- Personal notes and lab results pertaining to the text "Practical Malware Analysis" by Michael Sikorski and Andrew Honiq.☆12Oct 28, 2017Updated 8 years ago