Alternatives and similar repositories for cti-toolkit

Users that are interested in cti-toolkit are comparing it to the libraries listed below

• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated 2 years ago
• BushidoUK / Malware-Zoo
  Hashes of infamous malware
  ☆26Updated 2 years ago
• MishcondeReya / Covid-19-CTI
  A collection of Covid-19 related threat intelligence and resources.
  ☆19Updated 5 years ago
• DomainTools / DomainCAT
  Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations
  ☆46Updated 4 years ago
• WebBreacher / untappdWatcher
  ☆14Updated 8 months ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Updated 3 years ago
• ninoseki / ioc-extractor
  An npm package for extracting common IoC (Indicator of Compromise) from a block of text
  ☆59Updated 4 months ago
• trustedsec / RisingSun
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆10Updated 5 years ago
• dhoelzer / Silky
  Web interface for monitoring and interacting with Netflow data stored in Silk repositories.
  ☆13Updated 6 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated 2 years ago
• redhuntlabs / Maltego-Scripts
  ☆33Updated last year
• adulau / misp-osint-collection
  Collection of best practices to add OSINT into MISP and/or MISP communities
  ☆65Updated 2 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated last year
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆17Updated 10 years ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 6 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆23Updated 9 years ago
• joswr1ght / pcaphistogram
  Generate a histogram of TCP and UDP payload bytes from a pcap file
  ☆24Updated 3 years ago
• catalyst256 / CyberNomadResources
  Accompanying documentation, images, source code and other stuff from the cybernomad.online blog
  ☆27Updated 5 years ago
• ericalexanderorg / should-i-trust
  OSINT tool to evaluate the trustworthiness of a company
  ☆41Updated 6 years ago
• bostonlink / recon-ng-maltego
  recon-ng Maltego local transform pack
  ☆39Updated 12 years ago
• Srinivas11789 / urlRecon
  urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Serve…
  ☆35Updated 3 years ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 5 years ago
• jonathan6661 / P1sty
  Fraud prevention tool
  ☆28Updated 5 years ago
• jstrosch / search-abuse.ch
  Python3 script that can download samples directly from Abuse.CH or via submitted URLs
  ☆15Updated 5 years ago
• salaheldinaz / WigleKML
  Convert Wigle.net result from json to Kml
  ☆15Updated 5 years ago
• burritoblue / attck4fraud
  Principles of MITRE ATT&CK in the fraud domain
  ☆35Updated 6 years ago
• ArsenalRecon / BackstageParser
  Backstage Parser
  ☆33Updated 3 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆51Updated this week
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆41Updated 3 years ago
• NoDataFound / RiskIQ.SunBurst.Hunter
  The Purpose of this research tool is to provide a Python client into RiskIQ API services.
  ☆22Updated 5 years ago