6 More Threat Hunting Tools Everyone in the Industry Should Be Using

Microsoft Sysinternals Suite — https://docs.microsoft.com/en-us/sysinternals/

Kansa — https://github.com/davehull/Kansa

Kroll Artifact Parser and Extractor (KAPE) — https://www.kroll.com/en/services/cyber-risk/incident-response-litigation-support/kroll-artifact-parser-extractor-kape

GHIDRA — https://ghidra-sre.org

Regshot — https://github.com/Seabreg/Regshot

UACME — https://github.com/hfiref0x/UACME

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store