Alternatives and similar repositories for Unit42-timely-threat-intel

Users that are interested in Unit42-timely-threat-intel are comparing it to the libraries listed below

• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆198Updated last year
• mthcht / ThreatHunting-Keywords
  Awesome list of keywords and artifacts for Threat Hunting sessions
  ☆585Updated last week
• SecurityAura / DE-TH-Aura
  Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…
  ☆237Updated this week
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆264Updated last week
• MISP / misp-playbooks
  MISP Playbooks
  ☆206Updated last month
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆260Updated 3 months ago
• JMousqueton / ransomware.live
  🏴‍☠️💰 Another Ransomware gang tracker
  ☆220Updated last week
• cert-orangecyberdefense / ransomware_map
  Map tracking ransomware, by OCD World Watch team
  ☆469Updated 4 months ago
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆196Updated 3 weeks ago
• cyb3rmik3 / MDE-DFIR-Resources
  A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …
  ☆394Updated 6 months ago
• magicsword-io / LOLRMM
  LotL RMM
  ☆217Updated 3 weeks ago
• dfir-dd / dfir-toolkit
  CLI tools for forensic investigation of Windows artifacts
  ☆344Updated 8 months ago
• curated-intel / Attribution-to-IP
  A collection of methods to learn who the owner of an IP address is.
  ☆163Updated last month
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆207Updated 3 weeks ago
• volexity / threat-intel
  Signatures and IoCs from public Volexity blog posts.
  ☆355Updated last month
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆228Updated last week
• mdecrevoisier / SIGMA-detection-rules
  Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques
  ☆372Updated 6 months ago
• iknowjason / AutomatedEmulation
  An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
  ☆193Updated last year
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆116Updated 3 weeks ago
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆244Updated last year
• SEKOIA-IO / Community
  Welcome to the SEKOIA.IO Community repository!
  ☆161Updated 2 weeks ago
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆159Updated 10 months ago
• Bert-JanP / Open-Source-Threat-Intel-Feeds
  This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…
  ☆696Updated 5 months ago
• madirish / ossocdocs
  Open Source Security Operations Center Documentation
  ☆188Updated 2 weeks ago
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆185Updated last week
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆184Updated last week
• executemalware / Malware-IOCs
  ☆515Updated 9 months ago
• randomaccess3 / Awesome-BEC
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆257Updated 2 months ago
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆131Updated last month
• Yamato-Security / EnableWindowsLogSettings
  Documentation and scripts to properly enable Windows event logs.
  ☆620Updated last year