AzureHunter
CyberThreatHunting
AzureHunter | CyberThreatHunting | |
---|---|---|
2 | 1 | |
764 | 793 | |
- | - | |
0.0 | 3.3 | |
over 1 year ago | 22 days ago | |
PowerShell | Python | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
AzureHunter
CyberThreatHunting
What are some alternatives?
DetectionLabELK - DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
Azure-Sentinel - Cloud-native SIEM for intelligent security analytics for your entire enterprise.
sysmon-modular - A repository of sysmon configuration modules
ThreatHunting_with_Osquery - Threat Hunting & Incident Investigation with Osquery
CloudShell - Container Image for Azure Cloud Shell (https://azure.microsoft.com/en-us/features/cloud-shell/)
kc7 - A cybersecurity game in Azure Data Explorer
beagle - Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
ARI - Azure Resource Inventory - It's a Powerful tool to create EXCEL inventory from Azure Resources with low effort
Hunting-Queries-Detection-Rules - KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
Trawler - PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.
CloudAdoptionFramework - Code samples and extended documentation to support the guidance provided in the Microsoft Cloud Adoption Framework