Overview
Hunter works with SentinelOne Deep Visibility to hunt for indicators of interest, captured right from your browser.
Hunter works with SentinelOne Deep Visibility to hunt for indicators of interest, captured right from your browser page. The Hunter Chrome Extension lets you easily scrape data from your browser and opens a query in your SentinelOne Management Console to search for that data across your organization. Hunter captures these indicators from information open in your current browser tab: IP addresses, DNS names, and hashes (MD5, SHA-1, and SHA-256). The Hunter extension does not capture any personal or private data from the browser or the user. When the indicators of interest are captured, they are redirected to your SentinelOne Management Console. The data is not saved. The only permission the extension requires is to scrape the browsed pages, get the indicators, and send them to the SentinelOne Management Console. How to use: To use Hunter, you must be an Admin user in an active SentinelOne Management Console with Deep Visibility. Open Hunter and select the indicators to hunt for. When you click Hunt, a new query opens in Deep Visibility in your SentinelOne Management Console. You can edit the query or run it as is to search for the indicators in your environment. Steps: 1. Download Hunter by SentinelOne from the Chrome Web Store. 2. The first time you open Hunter, enter the URL of your SentinelOne Management Console. 3. Click Hunter and you’ll see all indicators in your current browser tab. 4. Hover over one and click Hunt. Or select multiple items and then click Hunt Now. 5. A new query opens in Deep Visibility in your SentinelOne Management Console. You can edit the query or run it as is to search for the indicators in your environment.
Erik HerreraJan 17, 2022
No documentation on how to configure or how to use. UI asks for a Management URL? No submit button. I put one in. Nothing happens? Probably a great tool. Just can't get it off the ground.
Ryan MerrickMar 4, 2021
This makes it very easy to search for large sets of IOC. I like the new feature of getting queries from their threat research team
Andre NoordamMar 4, 2021
Easy and efficient threat hunting in a SentinelOne protected environment
Details
- Version2.3.0
- UpdatedJuly 11, 2023
- Offered bySentinelOne
- Size6.44MiB
- LanguagesEnglish
- DeveloperSentinelOne
444 Castro St Suite 400 Mountain View, CA 94041-2017 USEmail
support@sentinelone.com - TraderThis developer has identified itself as a trader per the definition from the European Union.
Privacy
SentinelOne Hunter has disclosed the following information regarding the collection and usage of your data. More detailed information can be found in the developer's privacy policy.
SentinelOne Hunter handles the following:
This developer declares that your data is
- Not being sold to third parties, outside of the approved use cases
- Not being used or transferred for purposes that are unrelated to the item's core functionality
- Not being used or transferred to determine creditworthiness or for lending purposes