Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
☆723Dec 26, 2022Updated 3 years ago
Alternatives and similar repositories for CyberThreatIntel
Users that are interested in CyberThreatIntel are comparing it to the libraries listed below
Sorting:
- IOC from articles, tweets for archives☆318Dec 12, 2023Updated 2 years ago
- Interesting APT Report Collection And Some Special IOCs☆2,955Updated this week
- Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.☆964Feb 28, 2026Updated 3 weeks ago
- APT & CyberCriminal Campaign Collection☆4,043Jul 25, 2024Updated last year
- Windows Events Attack Samples☆2,526Jan 24, 2023Updated 3 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Mar 11, 2025Updated last year
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆446Oct 26, 2022Updated 3 years ago
- ☆215Jun 5, 2025Updated 9 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,501Jan 12, 2026Updated 2 months ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,653Mar 11, 2026Updated last week
- Misc Threat Hunting Resources☆377Jan 26, 2023Updated 3 years ago
- Detect Tactics, Techniques & Combat Threats☆2,269Jan 21, 2026Updated 2 months ago
- Re-play Security Events☆1,728Mar 20, 2024Updated 2 years ago
- YARA signature and IOC database for my scanners and tools☆2,884Mar 9, 2026Updated last week
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,174Jul 26, 2023Updated 2 years ago
- Indicators of Compromises (IOC) of our various investigations☆1,933Mar 10, 2026Updated last week
- Repository of YARA rules made by Trellix ATR Team☆627Mar 18, 2025Updated last year
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆141Nov 19, 2023Updated 2 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆266Feb 7, 2019Updated 7 years ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,722Sep 23, 2025Updated 6 months ago
- Volatility plugin for extracts configuration data of known malware☆495Dec 22, 2023Updated 2 years ago
- APTnotes data☆1,777Dec 16, 2024Updated last year
- Kaspersky's GReAT KLara☆733Jul 24, 2024Updated last year
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,080Nov 28, 2024Updated last year
- APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …☆1,405Nov 7, 2024Updated last year
- Utilities for Sysmon☆1,577Sep 21, 2025Updated 6 months ago
- ☆715Oct 28, 2022Updated 3 years ago
- Your Everyday Threat Intelligence☆1,959Updated this week
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 3 years ago
- Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.☆173May 29, 2024Updated last year
- Miscellaneous Malware RE☆193May 1, 2022Updated 3 years ago
- Retired beginner/intermediate malware analysis training materials from @pedramamini and @erocarrera.☆905Feb 25, 2020Updated 6 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,735Jan 16, 2026Updated 2 months ago
- A collection of resources for Threat Hunters☆914Oct 15, 2024Updated last year
- Telsy CTI Research Team☆57Dec 15, 2020Updated 5 years ago
- Elemental - An ATT&CK Threat Library☆318Dec 8, 2022Updated 3 years ago
- Indicators from Unit 42 Public Reports☆726Aug 17, 2025Updated 7 months ago
- ☆1,133Dec 19, 2023Updated 2 years ago