#powershell #admins #attacker #aws #azure #cloud #cloud_security #privileges #security_tools #threat
https://github.com/cyberark/SkyArk
https://github.com/cyberark/SkyArk
GitHub
GitHub - cyberark/SkyArk: SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS - cyberark/SkyArk
#python #cyber_threat_intelligence #enrichment #free_software #honeynet #incident_response #ioc #observable #osint #osint_python #security_tools #threat_intelligence #threatintel #virustotal
https://github.com/intelowlproject/IntelOwl
https://github.com/intelowlproject/IntelOwl
GitHub
GitHub - intelowlproject/IntelOwl: IntelOwl: manage your Threat Intelligence at scale
IntelOwl: manage your Threat Intelligence at scale - intelowlproject/IntelOwl
#go #analyze_logs #golang #ids #intrusion #intrusion_detection #intrusion_detection_system #iocs #log #log_analyzer #logs #threat #threat_analyzer #threat_hunting #threat_intelligence #threat_rules
https://github.com/kitabisa/teler
https://github.com/kitabisa/teler
GitHub
GitHub - teler-sh/teler: Real-time HTTP Intrusion Detection
Real-time HTTP Intrusion Detection. Contribute to teler-sh/teler development by creating an account on GitHub.
#python #cybersecurity #django #dnstwist #incident_response #misp #nltk #nltk_python #pymisp #python_tlsh #reactjs #rss_bridge #searx #security #thehive #thehive4py #threat_detection #threat_hunting #threat_intelligence #tlsh #watcher
https://github.com/Felix83000/Watcher
https://github.com/Felix83000/Watcher
GitHub
GitHub - thalesgroup-cert/Watcher: Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS. - thalesgroup-cert/Watcher
#powershell #analysis #dfir #event #forensics #hunting #incident #log #logs #response #sigma #threat #timeline #windows
https://github.com/Yamato-Security/WELA
https://github.com/Yamato-Security/WELA
GitHub
GitHub - Yamato-Security/WELA: Windows Event Log Auditor
Windows Event Log Auditor. Contribute to Yamato-Security/WELA development by creating an account on GitHub.
#powershell #azforensics #azure #azure_forensics #azuresearcher #cloud_forensics #cybersecurity #dfir #digital_forensics #incident_response #powershellv5 #threat_hunting #threathunting #unifiedauditlog
https://github.com/darkquasar/AzureHunter
https://github.com/darkquasar/AzureHunter
GitHub
GitHub - darkquasar/AzureHunter: A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365 - darkquasar/AzureHunter
#other #cti #iocs #osint #threat_intelligence #ukraine
https://github.com/curated-intel/Ukraine-Cyber-Operations
https://github.com/curated-intel/Ukraine-Cyber-Operations
GitHub
GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide…
Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory t...
#makefile #defense #osquery #security #threat_hunting
https://github.com/chainguard-dev/osquery-defense-kit
https://github.com/chainguard-dev/osquery-defense-kit
GitHub
GitHub - chainguard-dev/osquery-defense-kit: Production-ready detection & response queries for osquery
Production-ready detection & response queries for osquery - chainguard-dev/osquery-defense-kit
#other #awesome #awesome_list #cybersecurity #detection_engineering #mitre #splunk #threat_detection
https://github.com/infosecB/awesome-detection-engineering
https://github.com/infosecB/awesome-detection-engineering
GitHub
GitHub - infosecB/awesome-detection-engineering: Detection Engineering is a tactical function of a cybersecurity defense program…
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifyin...
#other #azure #blueteam #cybersecurity #defender_for_endpoint #dfir #infosec #kql #mde #mdi #security #sentinel #threat_hunting #vulnerability_management #zero_day
https://github.com/Bert-JanP/Hunting-Queries-Detection-Rules
https://github.com/Bert-JanP/Hunting-Queries-Detection-Rules
GitHub
GitHub - Bert-JanP/Hunting-Queries-Detection-Rules: KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection…
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rul...
#other #adblock #adguard #ads #blacklist #blocklist #coins #dns #domains #fake #filterlist #hosts #malware #metrics #phishing #pi_hole #privacy #scam #telemetry #threat_intelligence_feeds #tracking
https://github.com/hagezi/dns-blocklists
https://github.com/hagezi/dns-blocklists
GitHub
GitHub - hagezi/dns-blocklists: DNS-Blocklists: For a better internet - keep the internet clean!
DNS-Blocklists: For a better internet - keep the internet clean! - hagezi/dns-blocklists
#yara #all_in_one #antivirus #apk #elf #exe #linux #malware #malware_analysis #osx #packer #python3 #ransomware #security_tools #static_analysis #strings #suspicious_files #termux #threat_analysis #virustotal #windows
https://github.com/CYB3RMX/Qu1cksc0pe
https://github.com/CYB3RMX/Qu1cksc0pe
GitHub
GitHub - CYB3RMX/Qu1cksc0pe: All-in-One malware analysis tool.
All-in-One malware analysis tool. Contribute to CYB3RMX/Qu1cksc0pe development by creating an account on GitHub.
#python #email #emails #facebook #france #information_gathering #instagram #intelligence #osint #osint_python #osint_tools #person_search #skype #social_media #social_network #threat_intelligence #tracelabs
https://github.com/daprofiler/DaProfiler
https://github.com/daprofiler/DaProfiler
GitHub
GitHub - daprofiler/DaProfiler: DaProfiler is an OSINT tool allowing you to collect certain information about yourself in order…
DaProfiler is an OSINT tool allowing you to collect certain information about yourself in order to rectify by rgpd requests the traces you may have left on the net. DaProfiler is indeed able to rec...
#shell #case_management #cyber_security #endpoint_security #information_security #intrusion_detection_system #monitoring #network_security #security #security_tools #threat_hunting
Security Onion 2.4 is a new version of a security tool that helps protect your network. It has features like alerts, dashboards, and detection tools to find and stop threats. You can also use it to hunt for suspicious activity and analyze network traffic. The benefit to you is that it makes it easier to keep your network safe from cyber attacks and provides clear visuals and tools to manage security effectively. You can find more details on how to download, install, and use it through the provided links.
https://github.com/Security-Onion-Solutions/securityonion
Security Onion 2.4 is a new version of a security tool that helps protect your network. It has features like alerts, dashboards, and detection tools to find and stop threats. You can also use it to hunt for suspicious activity and analyze network traffic. The benefit to you is that it makes it easier to keep your network safe from cyber attacks and provides clear visuals and tools to manage security effectively. You can find more details on how to download, install, and use it through the provided links.
https://github.com/Security-Onion-Solutions/securityonion
GitHub
GitHub - Security-Onion-Solutions/securityonion: Security Onion is a free and open platform for threat hunting, enterprise security…
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections...
👎1
#other #cti #cyberhunter #darkweb #deepweb #threat_intelligence
deepdarkCTI is a free project that collects and shares cyber threat intelligence (CTI) from the deep and dark web, helping you stay aware of hidden cyber threats like stolen data, ransomware, and hacker activities. It gathers information from places like Telegram, Discord, hacker forums, and ransomware sites to provide useful indicators and patterns of cyber attacks. You can join their Telegram group to discuss and suggest new sources or support the project with donations. Using deepdarkCTI helps you detect threats early, improve your cybersecurity decisions, and protect your organization from cyber attacks more effectively.
https://github.com/fastfire/deepdarkCTI
deepdarkCTI is a free project that collects and shares cyber threat intelligence (CTI) from the deep and dark web, helping you stay aware of hidden cyber threats like stolen data, ransomware, and hacker activities. It gathers information from places like Telegram, Discord, hacker forums, and ransomware sites to provide useful indicators and patterns of cyber attacks. You can join their Telegram group to discuss and suggest new sources or support the project with donations. Using deepdarkCTI helps you detect threats early, improve your cybersecurity decisions, and protect your organization from cyber attacks more effectively.
https://github.com/fastfire/deepdarkCTI
GitHub
GitHub - fastfire/deepdarkCTI: Collection of Cyber Threat Intelligence sources from the deep and dark web
Collection of Cyber Threat Intelligence sources from the deep and dark web - fastfire/deepdarkCTI
#yara #awesome_list #blueteam #blueteam_tools #cti #detection #detection_engineering #dfir #hacktools #incident_response #ioc #iocs #ir #ransomware #redteam #rmm #security #siem #soc #threat_hunting #threat_intelligence
You can access comprehensive security detection lists and threat hunting resources that help identify malicious activity across your infrastructure. These curated collections include indicators like suspicious file hashes, domain names, IP addresses, and behavioral patterns organized by threat type—from ransomware and phishing to command-and-control servers and vulnerable drivers. By integrating these lists into your security tools like SIEM platforms and endpoint detection systems, you gain immediate visibility into known threats while learning detection methodologies through guides and YARA rules. This accelerates your ability to hunt for compromises, validate security controls, and stay current with emerging attack techniques without building detection logic from scratch.
https://github.com/mthcht/awesome-lists
You can access comprehensive security detection lists and threat hunting resources that help identify malicious activity across your infrastructure. These curated collections include indicators like suspicious file hashes, domain names, IP addresses, and behavioral patterns organized by threat type—from ransomware and phishing to command-and-control servers and vulnerable drivers. By integrating these lists into your security tools like SIEM platforms and endpoint detection systems, you gain immediate visibility into known threats while learning detection methodologies through guides and YARA rules. This accelerates your ability to hunt for compromises, validate security controls, and stay current with emerging attack techniques without building detection logic from scratch.
https://github.com/mthcht/awesome-lists
GitHub
GitHub - mthcht/awesome-lists: Awesome Security lists for SOC/CERT/CTI
Awesome Security lists for SOC/CERT/CTI. Contribute to mthcht/awesome-lists development by creating an account on GitHub.