From 8972536973756357cb931364bf1b76162ae3db53 Mon Sep 17 00:00:00 2001 From: Adel Ka Date: Wed, 28 Jun 2017 15:07:55 +1000 Subject: [PATCH] sqhunter tool added --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 4d8d058..1c7beb2 100644 --- a/README.md +++ b/README.md @@ -134,6 +134,7 @@ A curated list of tools and resources for security incident response, aimed to h ### Other Tools +* [sqhunter](https://github.com/0x4d31/sqhunter) - a threat hunter based on osquery and Salt Open (SaltStack) that can issue ad-hoc or distributed queries without the need for osquery's tls plugin. sqhunter allows you to query open network sockets and check them against threat intelligence sources. * [Cortex](https://thehive-project.org) - Cortex allows you to analyze observables such as IP and email addresses, URLs, domain names, files or hashes one by one or in bulk mode using a Web interface. Analysts can also automate these operations using its REST API. * [Crits](https://crits.github.io/) - a web-based tool which combines an analytic engine with a cyber threat database * [domfind](https://github.com/diogo-fernan/domfind) - *domfind* is a Python DNS crawler for finding identical domain names under different TLDs.