sqhunter tool added

2024-10-01 01:06:19 -04:00 · 2017-06-28 15:07:55 +10:00 · 2017-06-28 15:07:55 +10:00 · 8972536973
commit 8972536973
parent 5cd06faa59
1 changed files with 1 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -134,6 +134,7 @@ A curated list of tools and resources for security incident response, aimed to h

 ### Other Tools

+* [sqhunter](https://github.com/0x4d31/sqhunter) - a threat hunter based on osquery and Salt Open (SaltStack) that can issue ad-hoc or distributed queries without the need for osquery's tls plugin. sqhunter allows you to query open network sockets and check them against threat intelligence sources. 
 * [Cortex](https://thehive-project.org) - Cortex allows you to analyze observables such as IP and email addresses, URLs, domain names, files or hashes one by one or in bulk mode using a Web interface. Analysts can also automate these operations using its REST API.
 * [Crits](https://crits.github.io/) - a web-based tool which combines an analytic engine with a cyber threat database 
 * [domfind](https://github.com/diogo-fernan/domfind) - *domfind* is a Python DNS crawler for finding identical domain names under different TLDs.