Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
---|---|---|---|---|---|---|---|---|---|---|
Threathunter Playbook | 3,826 | 2 months ago | 5 | mit | Python | |||||
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient. | ||||||||||
Sysmon Dfir | 872 | 4 months ago | gpl-3.0 | |||||||
Sources, configuration and how to detect evil things utilizing Microsoft Sysmon. | ||||||||||
Cyberthreathunting | 755 | 5 months ago | gpl-3.0 | Python | ||||||
A collection of resources for Threat Hunters - Sponsored by Falcon Guard | ||||||||||
Sysmonhunter | 181 | 2 years ago | 2 | mit | JavaScript | |||||
An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal | ||||||||||
Tylium | 87 | 2 years ago | 1 | other | ||||||
Primary data pipelines for intrusion detection, security analytics and threat hunting | ||||||||||
Elk Hunting | 39 | 6 years ago | PowerShell | |||||||
Threat Hunting with ELK Workshop (InfoSecWorld 2017) | ||||||||||
Threat Hunting | 34 | 6 years ago | Shell | |||||||
This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories which are in their own, different modules required for threat hunting. This repo will be updated as and when new changes are made. | ||||||||||
App_splunk_sysmon_hunter | 33 | 7 years ago | gpl-3.0 | |||||||
Splunk App to assist Sysmon Threat Hunting | ||||||||||
Swelf | 24 | 10 months ago | 15 | agpl-3.0 | C# | |||||
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest. | ||||||||||
Captain | 16 | 4 years ago | mit | C++ | ||||||
Userland API monitor for threat hunting |