threathunting / Published-Content
Content Presented or Published in the Public Domain
☆11Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for Published-Content
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆49Updated 6 years ago
- 504 VSAgent☆23Updated 6 years ago
- Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…☆15Updated 5 years ago
- Repository for my ATT&CK analysis research.☆68Updated 5 years ago
- ☆9Updated 7 years ago
- Quick tool for using Hybrid Analysis API on command line..☆17Updated 6 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆21Updated 6 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆85Updated 7 years ago
- Konrads' Pen-Ultimate (Windows) Log File Parser☆13Updated 2 years ago
- Technical add-on to ingest json formatted volatility memory analysis plugin outputs☆13Updated 6 years ago
- Various Modules & Scripts for use with Viper Framework☆27Updated 5 years ago
- Splunk app for Threat hunting☆15Updated 6 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- An offensive Powershell console☆30Updated 8 years ago
- Talk given at DerbyCon and RuxCon 2016☆22Updated 8 years ago
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- Powershell Functions to interact with TheHive-Project☆10Updated 5 years ago
- Development guide for Volatility Plugins☆23Updated 7 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 9 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 7 years ago
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago
- A GC link parser for both linkfiles and jumplists.☆18Updated 8 years ago
- PowerShell No Agent Hunting☆108Updated 6 years ago