ForensicITGuy/handy-cti external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ForensicITGuy/handy-cti

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ForensicITGuy/handy-cti)

Close

ForensicITGuy / handy-ctiView on GitHubMore

• External links
• Readme badge

Resources I've found useful for my CTI work

☆12Dec 27, 2023Updated 2 years ago

Alternatives and similar repositories for handy-cti

Users that are interested in handy-cti are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 0x25bit / CVE-2020-0796-PoC

  View on GitHub
  Weaponized PoC for SMBv3 TCP codec/compression vulnerability
  ☆18Apr 1, 2020Updated 5 years ago
• scottleyg / SecOpsSamples

  View on GitHub
  Sample SecOps scripts and Utilities
  ☆12Jun 19, 2024Updated last year
• jibchain-net / node

  View on GitHub
  ☆16Oct 29, 2025Updated 4 months ago
• antman1p / PrintTCCdb

  View on GitHub
  JXA script for Mythic that prints the TCC.db
  ☆15Apr 18, 2021Updated 4 years ago
• secureworks / primary-refresh-token-viewer

  View on GitHub
  ☆12Oct 24, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• ReverseAndCode / Clubhouse-API

  View on GitHub
  Clubhouse private API - Clubhouse SaaS bot - Drop-in audio chat
  ☆25Apr 1, 2024Updated last year
• girdav01 / TMHunting

  View on GitHub
  Trend Micro XDR/Vision One Hunting Recipies
  ☆18Apr 7, 2021Updated 4 years ago
• fmresearchnovak / stigma

  View on GitHub
  Stigma instruments the Smali assembly code of commodity Android applications in order to implement dynamic information flow tracking.
  ☆11Nov 7, 2025Updated 4 months ago
• devops-kung-fu / lucha

  View on GitHub
  A CLI that scans for sensitive data in source code
  ☆14Mar 22, 2023Updated 3 years ago
• akexorcist / kotlin-multiplatform-presentation

  View on GitHub
  Kotlin Multiplatform presentation that built with Kotlin Multiplatform and Compose Multiplatform
  ☆17Jun 23, 2024Updated last year
• alephdata / pantomime

  View on GitHub
  Python library for MIME type parsing, normalisation and grouping.
  ☆13Nov 13, 2024Updated last year
• MythicAgents / leviathan

  View on GitHub
  ☆22Dec 30, 2025Updated 2 months ago
• aaronst / talks

  View on GitHub
  Presentation materials for talks I've given.
  ☆20Oct 14, 2019Updated 6 years ago
• hpthreatresearch / tools

  View on GitHub
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Apr 10, 2024Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• sous-chefs / snort

  View on GitHub
  Development repository for the snort cookbook
  ☆27Mar 2, 2026Updated 3 weeks ago
• NoDataFound / RiskIQ.SunBurst.Hunter

  View on GitHub
  The Purpose of this research tool is to provide a Python client into RiskIQ API services.
  ☆22Feb 4, 2021Updated 5 years ago
• cytix-software / AppSec-Detection-Framework

  View on GitHub
  A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilit…
  ☆33Updated this week
• tweaselORG / TrackHAR

  View on GitHub
  Library for detecting tracking data transmissions from web or app traffic in HAR format.
  ☆11Oct 22, 2025Updated 5 months ago
• DissectMalware / xlrd2

  View on GitHub
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Aug 1, 2024Updated last year
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• mitre-cyber-academy / mitre-cyber-academy.github.io

  View on GitHub
  Repository for hosting the MITRE Cyber Academy website.
  ☆11Apr 12, 2023Updated 2 years ago
• JPCERTCC / STrelok

  View on GitHub
  Application for STIX v2.0 objects management and analysis
  ☆27Nov 9, 2017Updated 8 years ago
• rj-chap / CFWorkshop

  View on GitHub
  Understanding and analyzing carrier files workshop repo
  ☆51Dec 4, 2019Updated 6 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• SygniaLabs / ScallOps-Recipes

  View on GitHub
  ☆25Jun 13, 2022Updated 3 years ago
• cedowens / C2-JARM

  View on GitHub
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆144Apr 20, 2023Updated 2 years ago
• ManagedSentinel / AzureSentinelKQLScripts

  View on GitHub
  Various tools used to monitor and troubleshoot Azure Sentinel data
  ☆31Oct 24, 2024Updated last year
• RedefiningReality / ohmykali

  View on GitHub
  A terminal plugin to make Kali Linux objectively better - compatible with ohmyzsh
  ☆18Jan 23, 2024Updated 2 years ago
• gertjanbruggink / presentations

  View on GitHub
  This directory contains presentations and related materials of my speaking engagements. I also use this to record historical presentation…
  ☆17Feb 13, 2025Updated last year
• cyberconsecurity / Unifi

  View on GitHub
  Unifi Images
  ☆26Apr 4, 2025Updated 11 months ago
• threat-hunting / awesome-threat-detection

  View on GitHub
  A curated list of awesome threat detection and hunting resources
  ☆16Sep 12, 2018Updated 7 years ago
• nullenc0de / vulnseer

  View on GitHub
  VulnSeer combines the power of Nmap's service detection with multiple AI providers to deliver intelligent vulnerability assessments. Unli…
  ☆43Jun 12, 2025Updated 9 months ago
• silascutler / MiscMalware

  View on GitHub
  Misc malware stuff
  ☆11Sep 30, 2020Updated 5 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• cfs0x / RProxy-LAB

  View on GitHub
  RProxy LAB is intended solely for educational purposes and authorized security testing with EvilGinx / Modlishka / EvilPuppet e.t.c tools
  ☆53Mar 4, 2026Updated 3 weeks ago
• stratosphereips / ip_enrich

  View on GitHub
  Enrich IP addresses with metadata and threat intelligence indicators.
  ☆24Aug 12, 2023Updated 2 years ago
• DEFCONMeshNet / DEFCONMeshNet

  View on GitHub
  ☆10Jul 24, 2020Updated 5 years ago
• dafthack / Misc-Powershell-Scripts

  View on GitHub
  Random Tools
  ☆19Jan 23, 2019Updated 7 years ago
• advanced-threat-research / DarkSide-Config-Extract

  View on GitHub
  ☆35Oct 29, 2021Updated 4 years ago
• Cymmetria / weblogic_honeypot

  View on GitHub
  WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…
  ☆33Apr 25, 2020Updated 5 years ago
• moaistory / WinSearchDBAnalyzer

  View on GitHub
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆127Jul 20, 2024Updated last year