hunting

安全、可靠、简单、免费的企业级蜜罐

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

The Hunting ELK

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Sample queries for Advanced hunting in Microsoft 365 Defender

Hunting queries and detections

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

Atomic Purple Team Framework and Lifecycle

Microsoft Sentinel SOC Operations

Collecting & Hunting for IOCs with gusto and style

Graph Visualization for windows event logs

哈基米 一个分布式蜜网系统 | hachimi A Distributed Honeypot System

KQL Queries. Microsoft Defender, Microsoft Sentinel

KQL queries for Advanced Hunting

Pyromid For Hack and Cracking Private Key and Address Bitcoin Wallet From Mnemonic [Words - Passphrase]

Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.

Bitcoin Crack and Hunting Private Key With Mnemonic [HACK] Passphrase 12-24 words and check value of address (transaction & balance)

Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant.

yara detection rules for hunting with the threathunting-keywords project