fibratus
Adversary hunter
Detects and mitigates advanced threat tradecraft by analyzing system events and behavior patterns
Adversary tradecraft detection, protection, and hunting
2k stars
70 watching
194 forks
Language: Go
last commit: about 1 month ago
Linked from 6 awesome lists
adversaryblueteamedretwgolanginstrumentationpythonsecuritywindowswindows-kernel
enaqx/awesome-pentest
sbilly/awesome-security
rshipp/awesome-malware-analysis
apsdehal/awesome-ctf
paralax/awesome-honeypots
meirwah/awesome-incident-responseRelated projects:
| Repository | Description | Stars |
|---|---|---|
 aboutsecurity/rastrea2r | A tool for hunting and tracking Internet of Things (IoT) security threats by collecting and analyzing indicators of compromise (IOCs) | 116 |
 binarydefense/goatrider | Tool to compare IP addresses or hostnames to threat intelligence feeds and detect potential security threats. | 138 |
 a3sal0n/cyberthreathunting | A collection of tools and resources for threat hunters to identify and respond to cyber threats. | 861 |
 otrf/threathunter-playbook | A community-driven project providing shared detection logic and resources for threat hunting | 4,049 |
 matamorphosis/scrummage | A platform for searching and analyzing publicly available online data to detect potential security threats | 515 |
 netevert/sentinel-attack | A tool to quickly deploy a threat hunting capability on Azure Sentinel using Sysmon and MITRE ATT&CK | 1,062 |
 guardicore/monkey | An adversary emulation platform used to test and improve network security defenses by simulating malware infections | 6,697 |
 thalesgroup-cert/watcher | Automated platform for discovering and analyzing cybersecurity threats targeting an organization | 869 |
 airbnb/artificial-adversary | A tool to generate adversarial text examples and test machine learning models against them | 399 |
 ninoseki/mihari | An aggregator tool for querying multiple services to gather threat intelligence data. | 870 |
 nshalabi/attack-tools | Utilities for simulating adversary behavior in the context of threat intelligence and security analysis | 1,011 |
 miladaslaner/threathunt | A PowerShell repository to simulate and train threat hunting skills without malicious files. | 134 |
 abhinavbom/threat-intelligence-hunter | An intelligence tool for searching and storing indicators across multiple security feeds. | 149 |
 thunlp/openattack | A Python toolkit for generating adversarial examples to test the robustness of natural language processing models | 699 |
 opencybersecurityalliance/kestrel-lang | A language and runtime framework for building reusable, composable threat hunting workflows using Python. | 302 |