• 🔭 Threat Hunting
• 💡 Detection Engineering Tips
• 📰 Detection Lists
• 🔍 DFIR Artifacts Insights
• 🧛 Purple Teaming
• 🗄️ Event Logs Analysis

• 📜My Detection Lists for SOC/DFIR
• 🧪PurpleTeam scripts and notes
• 👁️LOLC2
• 🆔BADGUIDs
• 🕳️SINKHOLED
• 📖Threat Intelligence Reports Database
• 🐾Threat Hunting artifacts
  • 🛠️Threat Hunting yara rules

PinnedLoading

1. ThreatHunting-KeywordsThreatHunting-KeywordsPublic

   Awesome list of keywords and artifacts for Threat Hunting sessions

   PowerShell 560 60

2. ThreatHunting-Keywords-yara-rulesThreatHunting-Keywords-yara-rulesPublic

   yara detection rules for hunting with the threathunting-keywords project

   YARA 116 16

3. awesome-listsawesome-listsPublic

   Awesome Security lists for SOC/CERT/CTI

   YARA 931 110

4. ThreatIntel-ReportsThreatIntel-ReportsPublic

   Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports

   Python 107 9

5. lolc2/lolc2.github.iololc2/lolc2.github.ioPublic

   lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection

   HTML 197 17

6. PurpleteamPurpleteamPublic

   Purpleteam scripts simulation & Detection - trigger events for SOC detections

   PowerShell 184 19