TLDR: find threats and be your electronic notebook to find the enemy 5x quicker
HUNT-AI helps threat hunting to make sure analysts are checking their boxes and observing all possibilities that an attacker can use on their terrain. This bot will help with managing how to threat hunting while giving helpful advice and keeping track of what you have looked at. All of this knowledge is made possible from the amazing support I have been given. learning from my current role, SEC504, FOR508, 13Cubed and many more have allowed me to give this amazing information in one central location.
- 1 brain cell
- pc with atleast a 🐹
- Download zip in top right
- unzip Hunt-AI.zip
- Go to path
*/hunt-ai/- you should see
app.py
- you should see
cd Installationpython3 setup.pycd ../python3 start.py
DO BOTS, Cyberdefenders and letsdefend over 50 times to get a good methodology
-
search
-
knowledge section
-
notebook save
- encrypt
-
have ips be entered into links
-
verify what links can be used
-
checklist of all items
-
when the notebook is put in order it creates a powerpoint and network diagram
-
have all the pre data go into the hunt data in its right section
-
add t codes associated with attacks so we can organize better
kept in notebook
- from
- to
- time incident
- time reported
- file/note/scheduled/registry key
- user
- t-code
python -m unittest discover Testing