all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

ahmedkhlief/APT-Hunter: Threat Hunting tool for windows event logs

Add to bookmarks
Feb. 13, 2023, 2:25 a.m. | /u/jnazario

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity

apt blueteamsec detect event event logs hidden hunter hunting logs mindset purple purple team team threat threat hunting tool uncover windows windows event logs

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

CVE-2024-21111 - Local Privilege Escalation in Oracle VirtualBox 12 hours ago | www.reddit.com
blueteamsec cve cve-2024 escalation +7
How I hacked into Google’s internal corporate assets [tl;dr: dependency confusion] 15 hours ago | www.reddit.com
assets blueteamsec corporate dependency +4
here's my blog on Phishing Email Investigation: A Step-by-Step Analysis 19 hours ago | www.reddit.com
analysis blog blueteamsec email +2
(The) Postman Carries Lots of Secrets - "We estimate over 4,000 live credentials are currently … 23 hours ago | www.reddit.com
blueteamsec cloud credentials live +4
Hunting for a Sliver in a haystack 1 day, 11 hours ago | www.reddit.com
blueteamsec haystack hunting sliver
Nation-State Threat Actors Renew Publications to npm 1 day, 17 hours ago | www.reddit.com
blueteamsec nation npm publications +3
Guidance for Incident Responders 1 day, 19 hours ago | www.reddit.com
blueteamsec guidance incident incident responders
JA4T: TCP Fingerprinting - And How to Use It to Block Over 60% of Internet … 2 days, 8 hours ago | www.reddit.com
block blueteamsec fingerprinting internet +3
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices 2 days, 10 hours ago | www.reddit.com
arcanedoor blueteamsec campaign devices +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior InfoSec Manager - Risk and Compliance

@ Federal Reserve System | Remote - Virginia
View on infosec-jobs.com

Security Analyst

@ Fortra | Mexico
View on infosec-jobs.com

Incident Responder

@ Babcock | Chester, GB, CH1 6ER
View on infosec-jobs.com

Vulnerability, Access & Inclusion Lead

@ Monzo | Cardiff, London or Remote (UK)
View on infosec-jobs.com

Information Security Analyst

@ Unissant | MD, USA
View on infosec-jobs.com
View more jobs