ThreatHunting Logo

ThreatHunting

0
Free
Visit Website

A Splunk application containing several dashboards and over 130 reports that facilitate initial hunting indicators to investigate. Requires ingesting Sysmon data into Splunk and tuning for effectiveness. Maps searches to the MITRE ATT&CK framework.

FEATURES

ALTERNATIVES

Real-time monitoring tool for newly issued SSL certificates.

DNSDumpster is a domain research tool for discovering and analyzing DNS records to map an organization's attack surface.

The FASTEST Way to Consume Threat Intelligence and make it actionable.

Check the reputation of an IP address to identify potential threats.

ThreatMiner is a threat intelligence portal that aggregates data from various sources and provides contextual information related to indicators of compromise (IOCs).

RogueApps is a collaborative repository documenting TTPs of malicious OIDC/OAuth 2.0 applications for cybersecurity research and awareness.

A tool for creating custom detection rules from YAML input

Aggregates security threats from online sources and outputs to various formats.

PINNED