threat-hunting · GitHub Topics

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

misp threat-sharing threat-hunting threatintel malware-analysis stix information-exchange fraud-management 安全 cti Cybersecurity fraud-detection fraud-prevention threat-analysis information-sharing threat-intelligence threat-intelligence-platform intelligence threat-intel

PHP 5.76 k

4 天前

OISF / suricata

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

安全 ids ips nsm network-monitoring suricata intrusion-detection-system intrusion-prevention-system threat-hunting Cybersecurity network-monitor

C 5.33 k

2 天前

elceef / dnstwist

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

phishing typosquatting domains dns OSINT idn Fuzzing/Fuzz testing threat-hunting homograph-attack scanner threat-intelligence

Python 5.19 k

2 个月前

SwiftOnSecurity / sysmon-config

Sysmon configuration file template with default high-quality event tracing

sysmon threatintel threat-hunting sysinternals Windows netsec 监控 Logging

5.04 k

1 年前

OTRF / ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

threat-hunting sysmon hunting-campaigns hypothesis hunting dfir hunter mitre-attack-db mitre

Python 4.24 k

1 年前

0x4D31 / awesome-threat-detection

#Awesome#✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

Awesome Lists threat-hunting 安全 detection threat-detection incident-response

4.2 k

1 年前

intelowlproject / IntelOwl

IntelOwl: manage your Threat Intelligence at scale

安全 Python threat-intelligence IoC (Disambiguation)incident-response cyber-threat-intelligence enrichment honeynet OSINT osint-python threatintel malware-analysis threat-hunting Hacktoberfest cyber-security Cybersecurity threathunting dfir

Python 4.15 k

4 天前

Cyb3rWard0g / HELK

The Hunting ELK

hunting elasticsearch kibana logstash hunting-platforms elk elk-stack elastic Docker Jupyter Notebook threat-hunting Apache Spark dockerhub

Jupyter Notebook 3.85 k

1 年前

InQuest / awesome-yara

#Awesome#A curated list of awesome YARA rules, tools, and people.

yara-rules yara-signatures yara malware-rules malware-analysis malware-research malware-detection yara-scanner yara-manager threat-hunting Awesome Lists IoC (Disambiguation)

3.84 k

3 个月前

Security-Onion-Solutions / securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, a...

cyber-security endpoint-security Cybersecurity intrusion-detection-system 监控 network-security 安全 threat-hunting

Shell 3.74 k

4 天前

alexandreborges / malwoverview

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Threa...

Malware virustotal malpedia urlhaus alienvault malshare threathunting Cybersecurity malware-analysis threat-hunting threatintelligence

Python 3.26 k

5 个月前