Project Name	Stars	Most Recent Commit	Open Issues	License	Language
Threathunter Playbook	3,826	2 months ago	5	mit	Python
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
Sysmon Dfir	872	4 months ago		gpl-3.0
Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
Cyberthreathunting	755	5 months ago		gpl-3.0	Python
A collection of resources for Threat Hunters - Sponsored by Falcon Guard
Sysmonhunter	181	2 years ago	2	mit	JavaScript
An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
Tylium	87	2 years ago	1	other
Primary data pipelines for intrusion detection, security analytics and threat hunting
Elk Hunting	39	6 years ago			PowerShell
Threat Hunting with ELK Workshop (InfoSecWorld 2017)
Threat Hunting	34	6 years ago			Shell
This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories which are in their own, different modules required for threat hunting. This repo will be updated as and when new changes are made.
App_splunk_sysmon_hunter	33	7 years ago		gpl-3.0
Splunk App to assist Sysmon Threat Hunting
Swelf	24	10 months ago	15	agpl-3.0	C#
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
Captain	16	4 years ago		mit	C++
Userland API monitor for threat hunting

Alternatives To Sysmonhunter

Select To Compare

Threathunter Playbook ⭐ 3,826

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

most recent commit 2 months ago

Sysmon Dfir ⭐ 872

Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.

most recent commit 4 months ago

Cyberthreathunting ⭐ 755

A collection of resources for Threat Hunters - Sponsored by Falcon Guard

most recent commit 5 months ago

Sysmonhunter ⭐ 181

An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal

most recent commit 2 years ago

Tylium ⭐ 87

Primary data pipelines for intrusion detection, security analytics and threat hunting

most recent commit 2 years ago

Elk Hunting ⭐ 39

Threat Hunting with ELK Workshop (InfoSecWorld 2017)

most recent commit 6 years ago

Threat Hunting ⭐ 34

This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories which are in their own, different modules required for threat hunting. This repo will be updated as and when new changes are made.

most recent commit 6 years ago

App_splunk_sysmon_hunter ⭐ 33

Splunk App to assist Sysmon Threat Hunting

most recent commit 7 years ago

Swelf ⭐ 24

Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/la

most recent commit 10 months ago

Captain ⭐ 16

Userland API monitor for threat hunting

most recent commit 4 years ago

Suggest An Alternative To SysmonHunter

Alternative Project Comparisons

Sysmonhunter vs Threathunter Playbook

Sysmonhunter vs Sysmon Dfir

Sysmonhunter vs Cyberthreathunting

Sysmonhunter vs Tylium

Sysmonhunter vs Elk Hunting

Sysmonhunter vs Threat Hunting

Sysmonhunter vs App_splunk_sysmon_hunter

Sysmonhunter vs Swelf

Sysmonhunter vs Captain

Popular Hunting Projects

Howtohunt ⭐ 5,137

Collection of methodology and test case for various web vulnerabilities.

most recent commit 6 months ago

Kube Hunter ⭐ 4,482

Hunt for security weaknesses in Kubernetes clusters

dependent packages 2total releases 18latest release May 12, 2022most recent commit 5 months ago

Gt ⭐ 4,333

GT (Great Tit) is a portable debugging tool for bug hunting and performance tuning on smartphones anytime and anywhere just as listening music with Walkman. GT can act as the Integrated Debug Environment by directly running on smartphones.

most recent commit a year ago

Hfish ⭐ 3,861

安全、可靠、简单、免费的企业级蜜罐

most recent commit 3 months ago

Helk ⭐ 3,633

The Hunting ELK

most recent commit 3 years ago

Popular Sysmon Projects

Sigma ⭐ 7,542

Main Sigma Rule Repository

dependent packages 2total releases 35latest release January 13, 2019most recent commit 17 days ago

Sysmon Config ⭐ 4,512

Sysmon configuration file template with default high-quality event tracing

most recent commit 3 months ago

Detectionlab ⭐ 4,486

Automate the creation of a lab environment complete with security tooling and logging best practices

most recent commit a year ago

Windowsspyblocker ⭐ 3,920

Block spying and tracking on Windows

most recent commit a year ago

Sysmon Modular ⭐ 2,364

A repository of sysmon configuration modules

most recent commit 5 months ago

Popular Security Categories