PSHunt Logo

PSHunt

0
Free
Visit Website

PSHunt is a Powershell Threat Hunting Module designed to scan remote endpoints for indicators of compromise or survey them for more comprehensive information related to the state of those systems. PSHunt began as the precursor to Infocyte's commercial product, Infocyte HUNT, and is now being open sourced for the benefit of the DFIR community. PSHunt is divided into several modules, functions, and folders, with Discovery functions used to identify hosts on the network, Scanners for modular queries, and Surveys for collecting comprehensive information from remote hosts.

FEATURES

ALTERNATIVES

A tool for tracking, scanning, and filtering yara files with distributed scanning capabilities.

Maltrail is a malicious traffic detection system utilizing blacklists and heuristic mechanisms.

YARA signature and IOC database for LOKI and THOR Lite scanners with high quality rules and IOCs.

Provides breach and attack simulation products for security control validation, offering three different products to meet the needs of organizations of various sizes and maturity levels.

Unified repository for Microsoft Sentinel and Microsoft 365 Defender containing security content, detections, queries, playbooks, and resources to secure environments and hunt for threats.

A PowerShell script to interact with the MITRE ATT&CK Framework via its own API using the deprecated MediaWiki API.

A free threat intelligence feed and banlist feed of known malicious IP addresses for public use only.

A reference implementation for collecting events and performing CAR analytics to detect potential adversary activity.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved