botsv2

Here are 3 public repositories matching this topic...

0x0allenace / Threat-Hunting-Recon

Splunk-based threat hunting case study analyzing reconnaissance activity using the BOTS v2 dataset, focused on detecting anomalous user agents, pivoting to source IPs, and extracting actionable IOCs.

ioc log-analysis splunk network-forensics incident-response dfir cybersecurity threat-hunting siem security-analysis blue-team botsv2

Updated Apr 3, 2026

0x0allenace / threat-hunting-initial-access

Star

A hands-on Splunk threat hunting investigation focused on identifying initial access through spearphishing, user execution patterns, and IOC development.

ioc log-analysis splunk incident-response phishing dfir cybersecurity threat-hunting siem blue-team initial-access botsv2

Updated Apr 3, 2026

osikoyamichael / Threat-hunt-using-splunk

Star

This project simulates a proactive threat hunt based on a law enforcement advisory. Using the BOTSv2 (Boss of the SOC) dataset within Splunk, I identified an adversary conducting stealthy reconnaissance using a non-standard browser (Naenara) over port 80.

ipinfo user-agent splunk uri-path methods soc botsv2

Updated Apr 16, 2026

Improve this page

Add a description, image, and links to the botsv2 topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the botsv2 topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly