threat-hunting · GitHub Topics

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

翻译 - MISP（核心软件）-开源威胁情报和共享平台（以前称为恶意软件信息共享平台）

misp threat-sharing threat-hunting threatintel malware-analysis stix information-exchange fraud-management 安全 cti Cybersecurity fraud-detection fraud-prevention threat-analysis information-sharing threat-intelligence threat-intelligence-platform intelligence threat-intel

PHP 5.57 k

13 小时前

elceef / dnstwist

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

翻译 - 域名置换引擎，用于检测打字错误，网络钓鱼和企业间谍活动

phishing typosquatting domains dns OSINT idn Fuzzing/Fuzz testing threat-hunting homograph-attack scanner threat-intelligence

Python 5.06 k

1 个月前

OISF / suricata

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

翻译 - OISF维护的Suricata git存储库

安全 ids ips nsm network-monitoring suricata intrusion-detection-system intrusion-prevention-system threat-hunting Cybersecurity network-monitor

C 5.03 k

16 小时前

SwiftOnSecurity / sysmon-config

Sysmon configuration file template with default high-quality event tracing

sysmon threatintel threat-hunting sysinternals Windows netsec 监控 Logging

4.91 k

8 个月前

OTRF / ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

翻译 - 威胁猎人的剧本，有助于发展狩猎活动的技术和假设。

threat-hunting sysmon hunting-campaigns hypothesis hunting dfir hunter mitre-attack-db mitre

Python 4.14 k

1 年前

0x4D31 / awesome-threat-detection

#Awesome#✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

Awesome Lists threat-hunting 安全 detection threat-detection incident-response

4.06 k

8 个月前

intelowlproject / IntelOwl

IntelOwl: manage your Threat Intelligence at scale

翻译 - 英特尔®猫头鹰：从单个API大规模分析文件，域，IP

安全 Python threat-intelligence IoC (Disambiguation)incident-response cyber-threat-intelligence enrichment honeynet OSINT osint-python threatintel malware-analysis threat-hunting Hacktoberfest cyber-security Cybersecurity threathunting dfir

Python 4.05 k

5 小时前

Cyb3rWard0g / HELK

The Hunting ELK

翻译 - 狩猎麋鹿

hunting elasticsearch kibana logstash hunting-platforms elk elk-stack elastic Docker Jupyter Notebook threat-hunting Apache Spark dockerhub

Jupyter Notebook 3.81 k

9 个月前

InQuest / awesome-yara

#Awesome#A curated list of awesome YARA rules, tools, and people.

翻译 - 精选的YARA规则，工具和人员的精选清单。

yara-rules yara-signatures yara malware-rules malware-analysis malware-research malware-detection yara-scanner yara-manager threat-hunting Awesome Lists IoC (Disambiguation)

3.71 k

1 个月前

Security-Onion-Solutions / securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

翻译 - Security Onion 2 - 用于威胁搜寻、企业安全监控和日志管理的 Linux 发行版

cyber-security endpoint-security Cybersecurity intrusion-detection-system 监控 network-security 安全 threat-hunting

Shell 3.57 k

4 天前

alexandreborges / malwoverview

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Threa...

翻译 - Malwoverview是第一个响应工具，可在包含恶意软件样本，特定恶意软件样本，可疑URL和域的目录中执行初始和快速分类。此外，它还允许下载样本并将其发送到主要的在线沙箱。

Malware virustotal malpedia urlhaus alienvault malshare threathunting Cybersecurity malware-analysis threat-hunting threatintelligence

Python 3.11 k

2 个月前