Threat-Hunting-and-DetectionRepository for threat hunting and detection queries, tools, etc.
Stars: ✭ 261 (+832.14%)
Mutual labels: threat-hunting, threat-detection
ELK-HuntingThreat Hunting with ELK Workshop (InfoSecWorld 2017)
Stars: ✭ 58 (+107.14%)
Mutual labels: threat-hunting, elastic
HelkThe Hunting ELK
Stars: ✭ 3,097 (+10960.71%)
Mutual labels: threat-hunting, elastic
detection-rulesThreat Detection & Anomaly Detection rules for popular open-source components
Stars: ✭ 34 (+21.43%)
Mutual labels: threat-hunting, threat-detection
Macos Attack DatasetJSON DataSet for macOS mapped to MITRE ATT&CK Tactics.
Stars: ✭ 116 (+314.29%)
Mutual labels: threat-hunting, elastic
dataloggerDataLogger foi projetado para ser uma biblioteca simples de log com suporte a vários providers.
Stars: ✭ 46 (+64.29%)
Mutual labels: elastic
Threat IntelArchive of publicly available threat INTel reports (mostly APT Reports but not limited to).
Stars: ✭ 252 (+800%)
Mutual labels: threat-hunting
Threathunter PlaybookA Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
Stars: ✭ 2,879 (+10182.14%)
Mutual labels: threat-hunting
app-search-pythonElastic App Search Official Python Client
Stars: ✭ 34 (+21.43%)
Mutual labels: elastic
DomainCATDomain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations
Stars: ✭ 34 (+21.43%)
Mutual labels: threat-hunting
utilitiesThis repository contains tools used by 401trg.
Stars: ✭ 19 (-32.14%)
Mutual labels: threat-hunting
elasticscoutElasticScout is an optimized Laravel Scout driver for Elasticsearch 7.1+
Stars: ✭ 64 (+128.57%)
Mutual labels: elastic
kbn circles visKibana 4.4.1 D3 Circles Packing Visualization
Stars: ✭ 30 (+7.14%)
Mutual labels: elastic
evtx-hunterevtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
Stars: ✭ 122 (+335.71%)
Mutual labels: threat-hunting
SysmonResourcesConsolidation of various resources related to Microsoft Sysmon & sample data/log
Stars: ✭ 64 (+128.57%)
Mutual labels: threat-hunting
MihariA helper to run OSINT queries & manage results continuously
Stars: ✭ 239 (+753.57%)
Mutual labels: threat-hunting
Blue-BaronAutomate creating resilient, disposable, secure and agile monitoring infrastructure for Blue Teams.
Stars: ✭ 23 (-17.86%)
Mutual labels: elastic
app-search-javascriptElastic App Search Official JavaScript Client
Stars: ✭ 56 (+100%)
Mutual labels: elastic
simplxC++ development framework for building reliable cache-friendly distributed and concurrent multicore software
Stars: ✭ 61 (+117.86%)
Mutual labels: elastic