hunting · GitHub Topics

hacklcx / HFish

安全、可靠、简单、免费的企业级蜜罐

翻译 - 🍯最方便的蜜罐平台。 🐝🐝

honeypot hunting

Go 4.22 k

3 个月前

OTRF / ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

翻译 - 威胁猎人的剧本，有助于发展狩猎活动的技术和假设。

threat-hunting sysmon hunting-campaigns hypothesis hunting dfir hunter mitre-attack-db mitre

Python 4.14 k

1 年前

Cyb3rWard0g / HELK

The Hunting ELK

翻译 - 狩猎麋鹿

hunting elasticsearch kibana logstash hunting-platforms elk elk-stack elastic Docker Jupyter Notebook threat-hunting Apache Spark dockerhub

Jupyter Notebook 3.81 k

9 个月前

Security-Onion-Solutions / security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

intrusion-detection log-management ids nsm hunting dfir

3.09 k

4 年前

Yamato-Security / hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

dfir threat hunting Windows event logs Rust sigma detection attack forensics incident response 安全 Cybersecurity incident-response security-automation threat-hunting

Rust 2.49 k

10 小时前

microsoft / Microsoft-365-Defender-Hunting-Queries

Sample queries for Advanced hunting in Microsoft 365 Defender

翻译 - Microsoft Threat Protection中的高级搜寻示例查询

hunting Cybersecurity sample-code

Jupyter Notebook 1.97 k

3 年前

Yamato-Security / WELA-deprecated

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

翻译 - WELA（Windows 事件日志分析器）：用于 Windows 事件日志的瑞士军刀！ゑ罗（ウェラ）

dfir log analysis forensics incident response sigma Windows event logs threat hunting timeline

PowerShell 780

2 年前

FalconForceTeam / FalconFriday

Hunting queries and detections

kql blueteam hunting purpleteam sentinel defender-for-endpoint

765

2 个月前

DefensiveOrigins / AtomicPurpleTeam

Atomic Purple Team Framework and Lifecycle

purpleteam hunting attack attack-defense attack-detection lifecycle famework

292

4 年前

eshlomo1 / Microsoft-Sentinel-SecOps

Microsoft Sentinel SOC Operations

安全 secops siem soc Azure hunting incident-response Microsoft threat-hunting threat-intelligence cloudsecurity

PowerShell 251

8 个月前

rastrea2r / rastrea2r

Collecting & Hunting for IOCs with gusto and style

threat hunting IoC (Disambiguation)安全

Python 237

4 年前

jurelou / epagneul

Graph Visualization for windows event logs

安全 forensics forensics-tools threat-hunting hunting evtx blueteam dfir-automation

Python 235

2 个月前

burpheart / hachimi

哈基米一个分布式蜜网系统 | hachimi A Distributed Honeypot System

honeypot hunting 安全

Go 175

2 个月前

wortell / KQL

KQL queries for Advanced Hunting

kql 安全 hunting

171

5 年前

Pymmdrza / Pyromid

Pyromid For Hack and Cracking Private Key and Address Bitcoin Wallet From Mnemonic [Words - Passphrase]

比特币 crack hunting key private wallet

Python 148

5 个月前

alexverboon / Hunting-Queries-Detection-Rules

KQL Queries. Microsoft Defender, Microsoft Sentinel

detection kql 安全 sentinel dfir hunting Azure azuread

137

14 天前

Pymmdrza / Pro2WordBTC

Bitcoin Crack and Hunting Private Key With Mnemonic [HACK] Passphrase 12-24 words and check value of address (transaction & balance)

比特币 btc crack hunting mining

Python 130

2 年前

lawndoc / AdvancedHuntingQueries

Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant.

安全 Cybersecurity kql hunting threat-hunting detection detection-engineering Microsoft microsoft365 defender-for-endpoint defender cyber-security xdr

119

7 个月前

mthcht / ThreatHunting-Keywords-yara-rules

#Awesome#yara detection rules for hunting with the threathunting-keywords project

Awesome Lists blueteam detection-engineering dfir forensics-tools hacktools hunting incident-response offensive-security threat-hunting threat-intelligence yara-rules yara-scanner yara-signatures

YARA 106

10 天前

al0ne / MacCheck

一个Mac下信息搜集小脚本主要用于信息搜集/应急响应/检测挖矿进程/异常进程/异常启动项

macOS Shell hunting

Shell 75

5 年前