Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Projects in Awesome Lists tagged with threathunting
A curated list of projects in awesome lists tagged with threathunting .
https://github.com/intelowlproject/intelowl
IntelOwl: manage your Threat Intelligence at scale
cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python security-tools threat-hunting threat-intelligence threathunting threatintel
Last synced: 25 Sep 2024
https://github.com/intelowlproject/IntelOwl
IntelOwl: manage your Threat Intelligence at scale
cyber-security cyber-threat-intelligence cybersecurity dfir enrichment hacktoberfest honeynet incident-response intel-owl ioc malware-analysis malware-analyzer osint osint-python python security-tools threat-hunting threat-intelligence threathunting threatintel
Last synced: 31 Jul 2024
https://github.com/alexandreborges/malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
alienvault cybersecurity malpedia malshare malware malware-analysis malwarebazaar threat-hunting threatfox threathunting threatintelligence triage urlhaus virustotal
Last synced: 01 Oct 2024
https://github.com/mandiant/threatpursuit-vm
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
analytics cyber data-science fireeye intelligence intelligence-analysis malware mandiant threat threathunting threatintelligence virtual-machine
Last synced: 30 Sep 2024
https://github.com/mandiant/ThreatPursuit-VM
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
analytics cyber data-science fireeye intelligence intelligence-analysis malware mandiant threat threathunting threatintelligence virtual-machine
Last synced: 04 Aug 2024
https://github.com/atc-project/atomic-threat-coverage
Actionable analytics designed to combat threats
incidentresponse mitre-attack threat-model threatdetection threathunting threatintelligence
Last synced: 01 Aug 2024
https://github.com/darkquasar/AzureHunter
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
azforensics azure azure-forensics azuresearcher cloud-forensics cybersecurity dfir digital-forensics incident-response powershellv5 threat-hunting threathunting unifiedauditlog
Last synced: 04 Aug 2024
https://github.com/tenzir/tenzir
Open source security data pipelines.
dataops incident-response investigation netflow pcap pipelines secdataops security siem sigma soc suricata threathunting zeek
Last synced: 31 Jul 2024
https://github.com/gacwr/openuba
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]
analytics anomaly-detection cybersecurity datascience elasticsearch elk flask information-security machine-learning nodejs react security siem sklearn spark tensorflow threathunting uba ueba user-behaviour
Last synced: 26 Sep 2024
https://mthcht.github.io/ThreatHunting-Keywords/
Awesome list of keywords and artifacts for Threat Hunting sessions
awesome-list blueteam detection-engineering dfir elk-stack endpoint-security forensic hacktools incident-response iocs offensive-scripts offensive-security redteam siem sigma-rules soc splunk threat-hunting threat-intelligence threathunting
Last synced: 01 Aug 2024
https://github.com/AbdulRhmanAlfaifi/Fennec
Artifact collection tool for *nix systems
blueteam dfir ir rust threathunting
Last synced: 04 Aug 2024
https://github.com/Viralmaniar/MurMurHash
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
blueteam blueteaming cybersecurity infosec murmurhash murmurhash3 phishing phishing-detection proactive-security purpleteam redteam redteaming security-tools threat-intelligence threathunting threatintel threatintelligence
Last synced: 04 Aug 2024
https://github.com/Richard1611/RemoteKapeTriage
A powershell tool that automate the remote forensic evidence adquisitions (triage) from Remote windows machines, using KAPE tool.
cybersecurity forensic-analysis forensics incident-response information-gathering information-security kape powershell powershell-script threathunting triage
Last synced: 01 Aug 2024
https://github.com/ashton-sidhu/sysmon-extract
Extract logs based off events from sysmon. Comes as a package, cli and ui.
data-science dataengineering infosec spark streamlit sysmon threat-intelligence threathunting
Last synced: 27 Sep 2024