advanced-threat-research/Threat-Reports external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

advanced-threat-research/Threat-Reports

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/advanced-threat-research/Threat-Reports)

Close

advanced-threat-research / Threat-ReportsView on GitHubMore

• External links
• Readme badge

Repository to store the Threat Reports made by the McAfee Enterprise ATR Team

☆10Oct 11, 2018Updated 7 years ago

Alternatives and similar repositories for Threat-Reports

Users that are interested in Threat-Reports are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• advanced-threat-research / IOCs

  View on GitHub
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆83Aug 4, 2021Updated 4 years ago
• advanced-threat-research / xbypass

  View on GitHub
  A tool to facilitate ROP Chain Development for XML Character Sanitization
  ☆20May 9, 2019Updated 6 years ago
• almost-real / IDBG

  View on GitHub
  Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily
  ☆14Oct 10, 2018Updated 7 years ago
• MAECProject / pefile-to-maec

  View on GitHub
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Mar 6, 2017Updated 9 years ago
• idaholab / Malcolm-Helm

  View on GitHub
  Helm charts for deploying Malcolm
  ☆16Updated this week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• advanced-threat-research / Yara-Rules

  View on GitHub
  Repository of YARA rules made by Trellix ATR Team
  ☆627Mar 18, 2025Updated last year
• SpiderLabs / IOCs-IDPS

  View on GitHub
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆109Jul 29, 2021Updated 4 years ago
• deroko / payloadrestrictions

  View on GitHub
  ☆36Sep 5, 2017Updated 8 years ago
• mandiant / rvmi-rekall

  View on GitHub
  Rekall Forensics and Incident Response Framework with rVMI extensions
  ☆33Mar 25, 2021Updated 5 years ago
• Marilyth / MopsBot-2.0

  View on GitHub
  A tracking bot written in Discord.Net. Notifying you of any changes you are interested in, happening anywhere on the Web.
  ☆14Sep 24, 2025Updated 6 months ago
• cmu-sei / pdfrankenstein

  View on GitHub
  Python tool for bulk PDF feature extraction. This tool is a prototype.
  ☆25Jan 9, 2017Updated 9 years ago
• idiom / OLEPackagerFormat

  View on GitHub
  OLE Package Format Documentation
  ☆23Jun 13, 2020Updated 5 years ago
• leoratte / aquacomputer-quadro-control

  View on GitHub
  Control aquacomputer quadro from linux.
  ☆14Oct 2, 2022Updated 3 years ago
• Dankirk / cve-2017-0065

  View on GitHub
  Exploiting Edge's read:// urlhandler
  ☆15Oct 23, 2021Updated 4 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• mirrorz-org / oh-my-mirrorz

  View on GitHub
  Mirror site speedtest
  ☆12Dec 4, 2023Updated 2 years ago
• sanyi / ipsetpy

  View on GitHub
  Interface to allow Python programs to manipulate ipsets.
  ☆13Feb 15, 2017Updated 9 years ago
• DDoctorzeus / GAShell

  View on GitHub
  A bash script that generates and securely manages Google Authenticator codes
  ☆20Feb 2, 2026Updated 2 months ago
• OsandaMalith / ShellCode-Extractor

  View on GitHub
  This tool will extract the opcodes from the .text section and display in different hex formats for different syntaxes. Works only with va…
  ☆16Feb 9, 2016Updated 10 years ago
• glinares / CSCGuard

  View on GitHub
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25May 3, 2018Updated 7 years ago
• RanchoIce / 44Con2018

  View on GitHub
  Slides of 44Con 2018
  ☆23Oct 11, 2018Updated 7 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7

  View on GitHub
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆23May 31, 2017Updated 8 years ago
• mohlcyber / OpenDXL-ATD-MAR-Elasticsearch

  View on GitHub
  Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana
  ☆10Aug 17, 2018Updated 7 years ago
• kaorimatz / prometheus-influxdb-adapter

  View on GitHub
  Prometheus remote storage adapter for InfluxDB
  ☆22Dec 6, 2018Updated 7 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• v-p-b / pydbg

  View on GitHub
  A pure-python win32 debugger interface.
  ☆28Jan 10, 2016Updated 10 years ago
• svv232 / Kleenex

  View on GitHub
  C++ wrapper around KLEE and AFL for intelligent, coverage guided fuzzing. Developed while doing research at MWR Infosecurity
  ☆18Aug 1, 2018Updated 7 years ago
• Mikoshi-nyudo / iptvnator-electron-v16

  View on GitHub
  IPTVnator Electron 0.16 with DRM & H.265 playback support. This build version also adds Shaka player and Artplayer components.
  ☆13Mar 21, 2026Updated last month
• dragosinc / CRASHOVERRIDE

  View on GitHub
  IOCs for CRASHOVERRIDE malware framework
  ☆27Jun 15, 2017Updated 8 years ago
• LiveTvWorldwide / IPTV

  View on GitHub
  ☆23Updated this week
• c01db33f / reil

  View on GitHub
  REIL translation library
  ☆36May 6, 2016Updated 9 years ago
• NorthBit / bulletin-scraper

  View on GitHub
  Download all of Microsoft's security updates and symbols
  ☆41Mar 31, 2016Updated 10 years ago
• bridgeythegeek / ndispktscan

  View on GitHub
  NDISPktScan is a plugin for the Volatility Framework. It parses the Ethernet packets stored by ndis.sys in Windows kernel space memory.
  ☆12Oct 23, 2015Updated 10 years ago
• advanced-threat-research / Ripple-20-Detection-Logic

  View on GitHub
  Ripple20 Critical Vulnerabilities - Detection Logic and Signatures
  ☆12May 28, 2021Updated 4 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• HarfangLab / iocs

  View on GitHub
  Indicators of compromise
  ☆17Jan 29, 2026Updated 2 months ago
• debernal / talks

  View on GitHub
  ☆23Aug 10, 2020Updated 5 years ago
• PwCUK-CTO / OperationCloudHopper

  View on GitHub
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Sep 26, 2017Updated 8 years ago
• ThirteenAG / modupdater

  View on GitHub
  ☆29Jun 26, 2025Updated 9 months ago
• sourceincite / poc

  View on GitHub
  Proof of Concept's provided by Source Incite
  ☆37Aug 10, 2017Updated 8 years ago
• mandiant / rvmi-qemu

  View on GitHub
  QEMU with rVMI extensions
  ☆25Jul 25, 2017Updated 8 years ago
• cyware-labs / cytaxii2

  View on GitHub
  ☆16Mar 19, 2026Updated last month