Windows-Hunting Logo

Windows-Hunting

0
Free
Visit Website

The purpose of this repository is to aid Windows threat hunters in looking for common artifacts during their day-to-day operations. Contributors are welcome to participate.

FEATURES

ALTERNATIVES

A curated list of resources for learning about deploying, managing, and hunting with Microsoft Sysmon.

A minimalistic Java library for representing threat model data in a normalized way and automating threat intelligence extraction.

An open source threat intelligence platform for storing and managing cyber threat intelligence knowledge.

A modular malware collection and processing framework with support for various threat intelligence feeds.

Check the reputation of an IP address to identify potential threats.

A daily updated summary of security advisories from various sources

A comprehensive list of APT groups and operations for tracking and mapping different names and naming schemes used by cybersecurity companies and antivirus vendors.

An informational repo about hunting for adversaries in your IT environment.