├── .gitignore ├── LICENSE ├── README.md ├── config.ini ├── demo ├── download.PNG ├── ep.PNG ├── file1.PNG ├── file2.PNG ├── intel1.PNG ├── intel2.PNG ├── intel3.PNG ├── mitre1.PNG ├── mitre2.PNG ├── mitre3.PNG ├── rules1.PNG ├── rules2.PNG ├── similar1.PNG ├── similar2.PNG ├── similar3.PNG ├── tag1.PNG ├── tag2.PNG ├── tag3.PNG └── vti.PNG ├── easyhunting.py ├── intelligence ├── alienvault_intel.py ├── apis │ ├── alienvault.py │ ├── bazaar.py │ ├── threatfox.py │ ├── triage.py │ ├── urlhaus.py │ └── virustotal.py ├── bazaar_intel.py ├── intel.py ├── threatfox_intel.py ├── triage_intel.py ├── tweetfeed_intel.py ├── urlhaus_intel.py └── vt_intel.py ├── linux-requirements.txt ├── pefil ├── file.py └── modules │ ├── capautil.py │ ├── pe.py │ └── yarautil.py ├── utils ├── attack_navigator │ ├── navigator_gen.py │ └── template-layer.json ├── colors.py ├── malapi.py └── peid │ ├── full_peid_signatures.txt │ └── peid_signatures.txt └── windows-requirements.txt /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/README.md -------------------------------------------------------------------------------- /config.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/config.ini -------------------------------------------------------------------------------- /demo/download.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/download.PNG -------------------------------------------------------------------------------- /demo/ep.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/ep.PNG -------------------------------------------------------------------------------- /demo/file1.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/file1.PNG -------------------------------------------------------------------------------- /demo/file2.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/file2.PNG -------------------------------------------------------------------------------- /demo/intel1.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/intel1.PNG -------------------------------------------------------------------------------- /demo/intel2.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/intel2.PNG -------------------------------------------------------------------------------- /demo/intel3.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/intel3.PNG -------------------------------------------------------------------------------- /demo/mitre1.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/mitre1.PNG -------------------------------------------------------------------------------- /demo/mitre2.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/mitre2.PNG -------------------------------------------------------------------------------- /demo/mitre3.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/mitre3.PNG -------------------------------------------------------------------------------- /demo/rules1.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/rules1.PNG -------------------------------------------------------------------------------- /demo/rules2.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/rules2.PNG -------------------------------------------------------------------------------- /demo/similar1.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/similar1.PNG -------------------------------------------------------------------------------- /demo/similar2.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/similar2.PNG -------------------------------------------------------------------------------- /demo/similar3.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/similar3.PNG -------------------------------------------------------------------------------- /demo/tag1.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/tag1.PNG -------------------------------------------------------------------------------- /demo/tag2.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/tag2.PNG -------------------------------------------------------------------------------- /demo/tag3.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/tag3.PNG -------------------------------------------------------------------------------- /demo/vti.PNG: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/demo/vti.PNG -------------------------------------------------------------------------------- /easyhunting.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/easyhunting.py -------------------------------------------------------------------------------- /intelligence/alienvault_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/alienvault_intel.py -------------------------------------------------------------------------------- /intelligence/apis/alienvault.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/apis/alienvault.py -------------------------------------------------------------------------------- /intelligence/apis/bazaar.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/apis/bazaar.py -------------------------------------------------------------------------------- /intelligence/apis/threatfox.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/apis/threatfox.py -------------------------------------------------------------------------------- /intelligence/apis/triage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/apis/triage.py -------------------------------------------------------------------------------- /intelligence/apis/urlhaus.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/apis/urlhaus.py -------------------------------------------------------------------------------- /intelligence/apis/virustotal.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/apis/virustotal.py -------------------------------------------------------------------------------- /intelligence/bazaar_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/bazaar_intel.py -------------------------------------------------------------------------------- /intelligence/intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/intel.py -------------------------------------------------------------------------------- /intelligence/threatfox_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/threatfox_intel.py -------------------------------------------------------------------------------- /intelligence/triage_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/triage_intel.py -------------------------------------------------------------------------------- /intelligence/tweetfeed_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/tweetfeed_intel.py -------------------------------------------------------------------------------- /intelligence/urlhaus_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/urlhaus_intel.py -------------------------------------------------------------------------------- /intelligence/vt_intel.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/intelligence/vt_intel.py -------------------------------------------------------------------------------- /linux-requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/linux-requirements.txt -------------------------------------------------------------------------------- /pefil/file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/pefil/file.py -------------------------------------------------------------------------------- /pefil/modules/capautil.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/pefil/modules/capautil.py -------------------------------------------------------------------------------- /pefil/modules/pe.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/pefil/modules/pe.py -------------------------------------------------------------------------------- /pefil/modules/yarautil.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/pefil/modules/yarautil.py -------------------------------------------------------------------------------- /utils/attack_navigator/navigator_gen.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/utils/attack_navigator/navigator_gen.py -------------------------------------------------------------------------------- /utils/attack_navigator/template-layer.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/utils/attack_navigator/template-layer.json -------------------------------------------------------------------------------- /utils/colors.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/utils/colors.py -------------------------------------------------------------------------------- /utils/malapi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/utils/malapi.py -------------------------------------------------------------------------------- /utils/peid/full_peid_signatures.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/utils/peid/full_peid_signatures.txt -------------------------------------------------------------------------------- /utils/peid/peid_signatures.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/utils/peid/peid_signatures.txt -------------------------------------------------------------------------------- /windows-requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/ppt0/easyhunting/HEAD/windows-requirements.txt --------------------------------------------------------------------------------