There are 25 repositories under hunting topic.
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
The Hunting ELK
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Sample queries for Advanced hunting in Microsoft 365 Defender
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
Hunting queries and detections
Atomic Purple Team Framework and Lifecycle
Microsoft Sentinel SOC Operations
Bitcoin Crack and Hunting Private Key With Mnemonic [HACK] Passphrase 12-24 words and check value of address (transaction & balance)
Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant
KQL Queries. Microsoft 365 Defender, Microsoft Sentinel
Multi Batch Private Key Genereted and Check from Database
yara detection rules for hunting with the threathunting-keywords project
Powershell script to help Speed up Threat hunting incident response processes
Practical Orientation Of MVISION EDR Query Language
Library of threat hunts to get any user started!
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
Security even with a small budget - there is no excuse!
DNS Dashboard for hunting and identifying beaconing
Spider or repeater to find all links.
Ekoparty's BlueSpace Keynote November 2021. Shoutout to @plugxor Muchas Gracias!!!
Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
Booster Hunting a Powerfull script For Hunting Private Key With CPU Saver MOD
A Node.js module for deobfuscating and expanding DOS/BATCH commands.