Process the fortune 1000 domains to identify live typo-sites. Save results into a database for later processing and analysis.

A simple Flask API for looking up hashes in the NSRL dataset

My personal experience in Threat Hunting and knowledge gained so far.

Python and WMI based incident response script

How can you track the hunting techniques you come up with?

Indicators of compromise relating to our report on APT10's targeting of global MSPs

ThreatConnect playbook checking if a URL has been archived in the wayback machine.

Threat Hunting with ELK Workshop (InfoSecWorld 2017)

Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI

Python low-interaction honeyclient

Digital Forensics Virtual File System (dfVFS)

Free Antivirus for S3 Buckets

Powershell collection designed to assist in Threat Hunting Windows systems.

PowerShell module for creating and managing Sysinternals Sysmon config files.

CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)

Detect Phishing Campaigns/Links related to your Organization.

An informational repo about hunting for adversaries in your IT environment.

Tool for threat hunting and IR.

mal-moonshine main goal is allowing fine grained searches across publicly available sandboxes (like Hybrid-Analysis)