ThreatHunting Project Logo

ThreatHunting Project

0
Free
Visit Website

An informational repo about hunting for adversaries in your IT environment. Be sure to visit ThreatHunting.net for more info about this repo. Here's the deal, in plain English: This repo is here for the community. You are free to use it for personal or commercial use provided you attribute it in some visible manner. We suggest "Data provided by the ThreatHunting Project, https://github.com/ThreatHuntingProject/ThreatHunting" or something substantially similar. Please do include the URL, though, to help more people find us.

FEATURES

ALTERNATIVES

HoneyDB is a honeypot-based threat intelligence platform that provides real-time insights into attacker behavior and malicious activity on networks.

Platform for the latest threat intelligence information

Bearded Avenger is a cybersecurity tool with various integrations and deployment instructions available.

A project that detects malicious SSL connections by identifying and blacklisting SSL certificates used by botnet C&C servers and identifying JA3 fingerprints to detect and block malware botnet C&C communication.

A community-driven public malware repository providing access to malware samples, tools, and resources for the cybersecurity community.

A Linux distribution designed for threat emulation and threat hunting, integrating attacker and defender tools for identifying threats in your environment.

Container of 200 Windows EVTX samples for testing detection scripts and training on DFIR.

OpenPhish provides real-time phishing trends, detecting new phishing URLs and targeting various brands.

PINNED