Windows-Hunting Logo

Windows-Hunting

0
Free
Visit Website

The purpose of this repository is to aid Windows threat hunters in looking for common artifacts during their day-to-day operations. Contributors are welcome to participate.

FEATURES

ALTERNATIVES

Create deceptive webpages to deceive and redirect attackers away from real websites by cloning them.

A threat intelligence dissemination layer for open-source security tools with STIX-2 support and plugin-based architecture.

Packet Storm is a global security resource providing around-the-clock information and tools to mitigate personal data and fiscal loss on a global scale.

A threat intelligence domain/IP/hash threat feeds checker that checks IPVoid, URLVoid, Virustotal, and Cymon.

Yara rule generator using VirusTotal code similarity feature code-similar-to.

A curated list of resources for learning about deploying, managing, and hunting with Microsoft Sysmon.

A community-driven project sharing detection logic, adversary tradecraft, and resources to make detection development more efficient, following MITRE ATT&CK structure.

A platform providing an activity feed on exploited vulnerabilities.

PINNED