π»ββοΈ πΉ Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.
β14May 22, 2024Updated 2 years ago
Alternatives and similar repositories for hunts
Users that are interested in hunts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- β13Updated this week
- Hundred Days of Yara Challengeβ12Jun 21, 2022Updated 3 years ago
- Storage for the IOCs I collectβ11Apr 3, 2026Updated last month
- Collect AWS logs and query them instantly with SQL! Open source CLI. No DB required.β16May 21, 2026Updated last week
- Turn any blog into structured threat intelligence.β58May 14, 2026Updated 2 weeks ago
- End-to-end encrypted email - Proton Mail β’ AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Convert Sigma rules to SIEM queries, directly in your browser.β116May 17, 2026Updated last week
- β18Dec 20, 2024Updated last year
- β30Jan 13, 2026Updated 4 months ago
- An open-source command-line tool for cybersecurity reporting automation and a configuration language for reusable templates. Reporting-asβ¦β71Jul 6, 2025Updated 10 months ago
- Repo for experimenting and testing MCP server builds for CTI-related research.β27May 13, 2025Updated last year
- Data perimeter helper is a tool that helps you design and anticipate the impact of your data perimeter controlsβ18Jan 21, 2026Updated 4 months ago
- A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.β27May 20, 2026Updated last week
- Deep Dork Web is a browser-based tool designed to automate Google Dork searches for ethical security research. It supports advanced queriβ¦β20Mar 13, 2025Updated last year
- A dataset with CloudTrail events from an attack simulation using Stratus.β26Jul 12, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Firepit - STIX Columnar Storageβ18Jun 5, 2024Updated last year
- Maintains backlink structure among interlinked Markdown notesβ11Dec 28, 2020Updated 5 years ago
- Small cyber challenges for fun and no profitβ12May 20, 2025Updated last year
- A dataset containing Office 365 Unified Audit Logs for security research and detectionβ59Jun 7, 2022Updated 3 years ago
- β14Aug 31, 2023Updated 2 years ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromiseβ69Apr 29, 2024Updated 2 years ago
- Actionable data for Security Operationsβ19Aug 26, 2021Updated 4 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interactionβ89Mar 11, 2026Updated 2 months ago
- DΓ©tection d'anomalie Γ partir des journaux d'authentification Windowsβ18Apr 16, 2021Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- This is a repository to experiment with MCP for securityβ47Jan 22, 2025Updated last year
- β20Oct 31, 2025Updated 6 months ago
- CocktailParty is a data broker system based on phoenix frameworkβ23Apr 23, 2025Updated last year
- Windows Security Loggingβ43Jul 17, 2022Updated 3 years ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...β141Nov 19, 2023Updated 2 years ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitionersβ120Oct 29, 2024Updated last year
- β17Sep 29, 2023Updated 2 years ago
- A minimalist Hugo theme that helps you build fully responsive documentation websites for small projects.β10Oct 19, 2021Updated 4 years ago
- IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tacticsβ193Apr 24, 2025Updated last year
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Jupyter Notebooks for Cyber Threat Intelligenceβ35Sep 14, 2023Updated 2 years ago
- Archive of the official Microsoft VibeVoice repository (7B & 1.5B). Backup of the deleted source code for the open-source TTS models, incβ¦β39Sep 5, 2025Updated 8 months ago
- CloudPathSniffer is an open-source, easy to use and extensible Cloud Anomaly Detection platform designed to help security teams to find hβ¦β13Nov 30, 2023Updated 2 years ago
- This repository contains Splunk queries to hunt some anomaliesβ47Jul 28, 2022Updated 3 years ago
- Asset inventory of over 800 public bug bounty programs.β12Jun 12, 2023Updated 2 years ago
- A Cloud Guru Maker Lab on API constructionβ11Aug 6, 2018Updated 7 years ago
- Tool that gathers a customizable set of ETW telemetry and generates user-defined detectionsβ54Jan 28, 2026Updated 4 months ago