Sample queries for Advanced hunting in Microsoft 365 Defender
翻译 - Microsoft Threat Protection中的高级搜寻示例查询
An informational repo about hunting for adversaries in your IT environment.
bug bounty 相关资源
A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
A collection of resources for Threat Hunters
Adversary tradecraft detection, protection, and hunting
翻译 - Windows内核探索和跟踪工具
A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.
Misc Threat Hunting Resources
Plugin debugging mod (fabric.)
Beginner Guide to Bug Hunting
Tools for hunting for threats.
1337 Wordlists for Bug Bounty Hunting
Live hunting of code injection techniques
翻译 - 实时寻找代码注入技术
A tool for OSINT based threat hunting
翻译 - 运行OSINT查询和连续管理结果的助手
Virtual Machine for Adversary Emulation and Threat Hunting
A Holistic OSINT and Threat Hunting Platform
Threat Hunting & Incident Investigation with Osquery