Alternatives and similar repositories for Covid-19-CTI

Users that are interested in Covid-19-CTI are comparing it to the libraries listed below

• Hestat / soc-threat-hunting
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆27Updated 5 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year
• swimlane / trawl
  A utility to trawl phishing domains and attempt to identify phishing kits as well as other malicious activity
  ☆36Updated 3 years ago
• ninoseki / ioc-extractor
  An npm package for extracting common IoC (Indicator of Compromise) from a block of text
  ☆58Updated last week
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 5 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated 2 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 10 months ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• Neo23x0 / atomic-threat-coverage
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆23Updated 6 years ago
• TobySalusky / cont3xt
  Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…
  ☆37Updated last year
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆49Updated last year
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 8 years ago
• randomuserid / Baltar
  Searches for Insider Threat Hunting
  ☆32Updated 6 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• burritoblue / attck4fraud
  Principles of MITRE ATT&CK in the fraud domain
  ☆35Updated 6 years ago
• DomainTools / DomainCAT
  Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations
  ☆43Updated 3 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆25Updated 5 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Updated 3 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆50Updated 2 months ago
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆35Updated 7 months ago
• NoDataFound / RiskIQ.SunBurst.Hunter
  The Purpose of this research tool is to provide a Python client into RiskIQ API services.
  ☆22Updated 4 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆26Updated 3 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆23Updated 8 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆17Updated 2 months ago
• weslambert / securityonion-strelka
  ☆13Updated 5 years ago
• mandiant / DFUR-Splunk-App
  The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.
  ☆12Updated 4 years ago
• dafthack / lab_scripts
  Repo for hosting various scripts for creating users for password spraying and other password attacks.
  ☆11Updated 5 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago