awesome-lists/Lists at main · BCP-Infosec-Repo/awesome-lists

Name		Name	Last commit message	Last commit date
parent directory ..
ASNs		ASNs
AV signatures		AV signatures
Browser Extensions		Browser Extensions
CheatSheets		CheatSheets
DNSTWIST		DNSTWIST
Drivers		Drivers
GeoIP		GeoIP
Hijacklibs		Hijacklibs
Others		Others
RMM		RMM
Ranges_IP_Address_Company_List		Ranges_IP_Address_Company_List
SSL CERTS		SSL CERTS
TLDs		TLDs
TOR		TOR
VPN		VPN
WMI		WMI
Windows Metadata		Windows Metadata
permissions		permissions
wineventlogs/EventIDs		wineventlogs/EventIDs
README.md		README.md
dns_over_https_servers_list.csv		dns_over_https_servers_list.csv
ransomware_extensions_list.csv		ransomware_extensions_list.csv
ransomware_notes_list.csv		ransomware_notes_list.csv
suspicious_file_double_extension.csv		suspicious_file_double_extension.csv
suspicious_hostnames_list.csv		suspicious_hostnames_list.csv
suspicious_http_user_agents_list.csv		suspicious_http_user_agents_list.csv
suspicious_mac_address_list.csv		suspicious_mac_address_list.csv
suspicious_named_pipe_list.csv		suspicious_named_pipe_list.csv
suspicious_ports_list.csv		suspicious_ports_list.csv
suspicious_tlds_list.csv		suspicious_tlds_list.csv
suspicious_usb_ids_list.csv		suspicious_usb_ids_list.csv
suspicious_windows_firewall_rules_list.csv		suspicious_windows_firewall_rules_list.csv
suspicious_windows_services_names_list.csv		suspicious_windows_services_names_list.csv
suspicious_windows_tasks_list.csv		suspicious_windows_tasks_list.csv
windows_asr_rules.csv		windows_asr_rules.csv

README.md

Suspicious Windows Services
- suspicious_windows_services_names_list.csv - https://mthcht.medium.com/threat-hunting-suspicious-windows-service-names-2f0dceea204c
Suspicious User Agents
- suspicious_http_user_agents_list.csv - https://mthcht.medium.com/threat-hunting-suspicious-user-agents-3dd764470bd0
Suspicious TLDs
- suspicious_tlds_list.csv - https://mthcht.medium.com/threat-hunting-suspicious-tlds-a742c2adbf58
DNS over https
- dns_over_https_servers_list.csv - https://mthcht.medium.com/detecting-dns-over-https-30fddb55ac78
DNSTwist Phishing detection
- [DNSTWIST] - https://medium.com/detect-fyi/detecting-phishing-attempts-with-dnstwist-37c426b3bbb8
Detecting DLL Hijacking
- hijacklibs_list.csv hijacklibs_list.csv
- https://mthcht.medium.com/detect-dll-hijacking-techniques-from-hijacklibs-with-splunk-c760d2e0656f
Suspicious Named pipes
- suspicious_named_pipe_list.csv - https://medium.com/detect-fyi/threat-hunting-suspicious-named-pipes-a4206e8a4bc8

... todo