From 606bb7647e29b16f46dee4bd5d5bd6bed6d29d22 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Sun, 24 Jan 2021 23:43:09 +0700
Subject: [PATCH] Add ahmedkhlief/APT-Hunter to DFIR section

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 16ab4ea..f1f80e4 100644
--- a/README.md
+++ b/README.md
@@ -904,6 +904,10 @@ This repository is created as an online bookmark for useful links, resources and
         <td><a href="https://github.com/activecm/BeaKer">activecm/BeaKer</a></td>
         <td>Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/ahmedkhlief/APT-Hunter">ahmedkhlief/APT-Hunter</a></td>
+        <td>APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity</td>
+    </tr>
     <tr>
         <td><a href="https://www.alienvault.com/products/ossim">AlienVault OSSIM</a></td>
         <td>AlienVault OSSIM: The World’s Most Widely Used Open Source SIEM</td>