Note: This project is no longer maintained. Please check https://github.com/Sam0x90/CB-Threat-Hunting for an updated/maintained or newly created detection rules.
Carbon Black search queries that help security analysts in finding malicious activities.The search queries could be adjusted to be used elsewhere including sysmon
This will contain tested search queries to map most of Mitre ATTACK Framework to CarbonBlack. Will be updated from time to time