ThreatHunting-Keywords

May 2024 updates

• 72 tools added
• 39865 detection patterns
• WebSite: https://mthcht.github.io/ThreatHunting-Keywords/
• Individual Tool Lists: https://github.com/mthcht/ThreatHunting-Keywords/tree/main/tools
• Yara Rules: https://github.com/mthcht/ThreatHunting-Keywords-yara-rules
• ThreatHunting-Keywords project: https://github.com/mthcht/ThreatHunting-Keywords
• Specific Artifact Lists Updated: https://github.com/mthcht/awesome-lists/tree/main/Lists

Added:

• 1secmail.com
• AD-common-queries
• ADFSDump-PS
• AMSITrigger
• Adcheck
• AmsiBypass
• AutoIt
• BadWindowsService
• Blank-Grabber
• BlankOBF
• CLR-Injection
• DoubleDrive
• EASSniper
• GTFONow
• HTTP-Shell
• IPPrintC2
• Invoke-DNSteal
• Invoke-Stealth
• LTProxy
• Luna-Grabber
• Malware RAT collection
• Neo-reGeorg
• OSEP-Code-Snippets
• Omnispray
• PPLSystem
• PSAsyncShell
• Powershell-Scripts-for-Hackers-and-Pentesters
• Proxifier
• QuickAssist
• RITM
• RPC-Backdoor
• RedTeam_Tools_n_Stuff
• Rust-for-Malware-Development
• S-inject
• SharpBruteForceSSH
• SharpElevator
• SharpPersistSD
• SharpRODC
• ShellServe
• ShellSync
• ThievingFox
• TokenTacticsV2
• TunnelVision
• arsenal
• beeceptor.com
• btunnel.in
• dropbox
• guerrillamail
• homeway.io
• killer
• ldap queries
• localhost.run
• lolminer
• maildrop
• mega.co.nz
• myftp.biz
• myftp.org
• nbtscan
• netcat
• no_defender
• pamspy
• pinggy
• powershell
• powerview
• pwcrack-framework
• python
• r77-rootkit
• remoteit
• serveo.net
• spraycharles
• staqlab-tunnel
• temp-mail

Details of added + updated tools Full Changelog: v1.0.1...v1.0.2