Threat Hunting Artificial Intelligence
This tool helps a threat hunting to make sure analysts are checking their boxes and observing all possibilities that an attacker can use on their terrain. This bot will help with managing how to threat hunting while giving helpful advice and keeping track of what you have looked at. All of this knowledge is made possible from the amazing support I have been given. learning from my current role, SEC504, FOR508, 13Cubed and many more have allowed me to give this amazing information in one central location.
minimum requirements
- 1 brain cell
- pc with atleast a 🐹
Depenecies
Python
Directions
-
Download zip in top right
-
unzip Hunt-AI.zip
-
Go to path
*/hunt-ai/- you should see
dco.py
- you should see
-
Set Enviroment
- On Windows
.\venv\Scripts\activate - On macOS/Linux
source venv/bin/activate
- On Windows
-
Install requirements
pip install -r requirements.txt -
python3 dco.py
Guidance
check off what you have looked at by pressing the number
-# to uncheck section
ex. -1 will uncheck 1
#! will highlight section
ex. 1! will highlight 1
Todo
- session management
- ip, domain, service logging
- sysmon notes
- other sections
- global commands
- search
- have ips be entered into links
- verify what links can be used