thirdeyeintelligence/ThreatHunting external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

thirdeyeintelligence/ThreatHunting

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/thirdeyeintelligence/ThreatHunting)

Close

thirdeyeintelligence / ThreatHuntingView on GitHubMore

• External links
• Readme badge

An informational repo about hunting for adversaries in your IT environment.

☆14Apr 10, 2017Updated 9 years ago

Alternatives and similar repositories for ThreatHunting

Users that are interested in ThreatHunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• thirdeyeintelligence / Tools-mindmap

  View on GitHub
  mindmap created for tools can be used during analysis/investigation
  ☆28Jan 4, 2017Updated 9 years ago
• CERT-Bund / misp-warninglists-analyzer

  View on GitHub
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Dec 27, 2017Updated 8 years ago
• superponible / DFIR

  View on GitHub
  Various DFIR Tools
  ☆27Jul 23, 2018Updated 7 years ago
• williballenthin / LfLe

  View on GitHub
  Recover event log entries from an image by heurisitically looking for record structures.
  ☆26Oct 9, 2015Updated 10 years ago
• dkovar / ircollect

  View on GitHub
  ircollect
  ☆31Aug 7, 2013Updated 12 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• CIRCL / cuckoo-modified

  View on GitHub
  Modified edition of cuckoo
  ☆18Feb 14, 2018Updated 8 years ago
• forensicmatt / libtsk-rs

  View on GitHub
  Wrapper for TSK (Sleuth Kit) Bindings
  ☆11Jan 10, 2023Updated 3 years ago
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter

  View on GitHub
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19May 27, 2017Updated 9 years ago
• alphaSeclab / malware-ioc-hash

  View on GitHub
  Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
  ☆19Sep 10, 2020Updated 5 years ago
• clr2of8 / DeployREMnux

  View on GitHub
  DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).
  ☆16Dec 20, 2019Updated 6 years ago
• aacgood / Cortex-Analyzers

  View on GitHub
  A collection of Cortex Analyzers and Responders for TheHive/Cortex
  ☆13Jan 29, 2020Updated 6 years ago
• thirdeyeintelligence / IOCs-in-CSV-format

  View on GitHub
  The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research
  ☆12Jun 10, 2017Updated 8 years ago
• defensivedepth / Pertinax

  View on GitHub
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Feb 20, 2024Updated 2 years ago
• certsocietegenerale / event2timeline

  View on GitHub
  Simple Microsoft Windows sessions event logs visualization
  ☆154May 2, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• joxeankoret / deeptoad

  View on GitHub
  DeepToad is a library and a tool to clusterize similar files using fuzzy hashing
  ☆20Apr 5, 2020Updated 6 years ago
• williballenthin / wevt_template

  View on GitHub
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Dec 30, 2023Updated 2 years ago
• sailuh / perceive

  View on GitHub
  PERCEIVE is a project incubator inspired by Apache Incubator and Stack Exchange's Area 51. It serves as a staging zone repository for the…
  ☆13May 21, 2018Updated 8 years ago
• adulau / misp-osint-collection

  View on GitHub
  Collection of best practices to add OSINT into MISP and/or MISP communities
  ☆65Sep 29, 2023Updated 2 years ago
• grahamhelton / SansTerminalIndexer

  View on GitHub
  Easily create index of your SANS books
  ☆18Oct 28, 2022Updated 3 years ago
• CIRCL / bgpranking-redis-api

  View on GitHub
  API to access the Redis database of a BGP Ranking instance.
  ☆17Dec 11, 2017Updated 8 years ago
• corelight / top-dns

  View on GitHub
  Top DNS Measurement for Bro
  ☆10Aug 22, 2020Updated 5 years ago
• pcbje / relational-timeline

  View on GitHub
  Visualization of interaction between entities
  ☆17Nov 28, 2016Updated 9 years ago
• LogRhythm-Labs / VirusTotal

  View on GitHub
  VirusTotal SIEM Integration and Automation
  ☆18Jan 16, 2017Updated 9 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• CanTopay / thehive-playbook-creator

  View on GitHub
  A script to create and assign SOP tasks into the cases
  ☆20Aug 16, 2020Updated 5 years ago
• StamusNetworks / KTS5

  View on GitHub
  Kibana 5 Templates for Suricata IDPS
  ☆43May 30, 2018Updated 8 years ago
• packetrat / packethunting

  View on GitHub
  Resources and materials for DEF CON 2018 Packet Hunting Workshop
  ☆80Aug 12, 2018Updated 7 years ago
• Powershell-Offense / Post-Exploitation

  View on GitHub
  \ PowerAvails Powershell /
  ☆10Jun 30, 2018Updated 7 years ago
• securitytube / hack-of-the-day

  View on GitHub
  SecurityTube Hack of the Day
  ☆17Apr 2, 2013Updated 13 years ago
• osV22 / ATTACK-Force-Graph

  View on GitHub
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆39Apr 19, 2025Updated last year
• CIRCL / pystemon

  View on GitHub
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Jan 31, 2021Updated 5 years ago
• analyzeDFIR / analyzePF

  View on GitHub
  Tool for analysis of Windows Prefetch files
  ☆26Nov 11, 2018Updated 7 years ago
• pcengines / linux-gpio-nct5104d

  View on GitHub
  NCT5104D GPIO Linux Driver
  ☆13Jan 5, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• fygrave / iocmap

  View on GitHub
  Indicator of Compromise Mapping Service
  ☆12Apr 15, 2014Updated 12 years ago
• moaistory / IE10Analyzer

  View on GitHub
  http://moaistory.blogspot.com/2016/08/ie10analyzer.html
  ☆20Jul 20, 2024Updated last year
• jstnk9 / TIBER-Cases

  View on GitHub
  TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …
  ☆27Jul 13, 2022Updated 3 years ago
• corumir / Practical-Tradecraft

  View on GitHub
  Resources, articles, thoughts, datasets, papers on TI tradecraft
  ☆10Aug 24, 2018Updated 7 years ago
• LogRhythm-Labs / PIE

  View on GitHub
  The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
  ☆180Apr 13, 2020Updated 6 years ago
• reidrac / swift-nbd-server

  View on GitHub
  This is a NBD server for OpenStack Object Storage (Swift)
  ☆31Mar 31, 2016Updated 10 years ago
• jordisk / TheHive2Sigma

  View on GitHub
  Python script to automatically create sigma rules from The hive observables
  ☆25Mar 17, 2019Updated 7 years ago