Alternatives and similar repositories for TTP-Threat-Feeds

Users that are interested in TTP-Threat-Feeds are comparing it to the libraries listed below

• dobin / ttpExtractor

  View on GitHub
  Extract the Procedures (TTP) from CTI reports
  ☆16Dec 13, 2025Updated 2 months ago
• karmine05 / DEF3ND

  View on GitHub
  🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…
  ☆46Jun 28, 2025Updated 7 months ago
• gAlAxYnINJaTE / Binance_Smart_Chain-Bot

  View on GitHub
  local trading of BNB and Meme Rush tokens on Binance Smart Chain
  ☆28Updated this week
• ChaitanyaHaritash / IllusiveFog

  View on GitHub
  Windows Administrator level Implant.
  ☆50Sep 28, 2024Updated last year
• christosgalano / sKaleQL

  View on GitHub
  sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…
  ☆19May 20, 2025Updated 8 months ago
• CroodSolutions / BeaconatorC2

  View on GitHub
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆92Jan 14, 2026Updated last month
• rstcloud / rstcloud-import2misp

  View on GitHub
  Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.
  ☆18Jun 16, 2025Updated 8 months ago
• kozmer / silentpulse

  View on GitHub
  single-threaded event driven sleep obfuscation poc for linux
  ☆37Jun 14, 2025Updated 8 months ago
• deriv-security / MeetC2

  View on GitHub
  (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.
  ☆132Sep 4, 2025Updated 5 months ago
• strozfriedberg / DUALITY

  View on GitHub
  ☆18Feb 29, 2024Updated last year
• Bournemouth2600 / Detection-Engineering-Intro

  View on GitHub
  An introduction to detection engineering
  ☆13Jan 3, 2025Updated last year
• JPMinty / Detection_Engineering_Signatures

  View on GitHub
  YARA, SIGMA, SNORT Rules based on Malware Analysis
  ☆16Apr 23, 2025Updated 9 months ago
• conexioninversa / WOPR

  View on GitHub
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Apr 22, 2024Updated last year
• 0xcf80 / ShellCodeLoader_Indirect_Syscalls

  View on GitHub
  Shellcode Loader using indirect syscalls
  ☆16Jan 21, 2024Updated 2 years ago
• muchdogesec / txt2stix

  View on GitHub
  Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.
  ☆79Feb 4, 2026Updated last week
• mneochenveselo / cryptochecker

  View on GitHub
  CryptoChecker with bunch of features. Seedphrase checker, Metamask, Brave, Ronin, Binance Chain, Exodus, Atomic wallets. NFT & Airdrops c…
  ☆35May 15, 2025Updated 9 months ago
• JCSteiner / SGCC---public

  View on GitHub
  Command and Control Framework using powershell implants
  ☆36Jun 17, 2025Updated 7 months ago
• moval0x1 / NoDelete

  View on GitHub
  NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.
  ☆49Nov 17, 2025Updated 3 months ago
• matthw / malware_analysis

  View on GitHub
  ☆18Mar 26, 2024Updated last year
• RedSiege / Chromatophore

  View on GitHub
  Utilities for obfuscating shellcode
  ☆99Sep 16, 2025Updated 5 months ago
• T1erno / bin2shellcode

  View on GitHub
  C++ tool and library for converting .bin files to shellcode in multiple output formats.
  ☆33Aug 18, 2025Updated 5 months ago
• 2igosha / sunburst_dga

  View on GitHub
  ☆22Dec 22, 2020Updated 5 years ago
• 0xTriboulet / Abomination

  View on GitHub
  A synergized Visual Studio and Rust development environment
  ☆19Jan 25, 2025Updated last year
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆155Jul 23, 2025Updated 6 months ago
• andreisss / Remote-DLL-Injection-with-Timer-based-Shellcode-Execution

  View on GitHub
  Remote DLL Injection with Timer-based Shellcode Execution
  ☆154Jul 18, 2025Updated 6 months ago
• zarkones / BloodfangC2

  View on GitHub
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Jul 23, 2025Updated 6 months ago
• crckturtle / Blooket-Hack-GUI

  View on GitHub
  "Hacks" for online blooket games. Does not require outside information (ie. url, gamepin, sign in information) blooket hacks
  ☆14Jan 25, 2024Updated 2 years ago
• nisargsuthar / Veritas

  View on GitHub
  A hex viewer for the sleuths!
  ☆20Nov 7, 2025Updated 3 months ago
• Bert-JanP / Sentinel-Automation

  View on GitHub
  Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.
  ☆115Jan 18, 2026Updated 3 weeks ago
• SIFalcon / Detection

  View on GitHub
  ☆22Jul 7, 2023Updated 2 years ago
• CheckPointSW / Nodejs-Tracer

  View on GitHub
  ☆59Jan 1, 2026Updated last month
• w1th4d / JarPlant

  View on GitHub
  Java archive implant toolkit.
  ☆61Apr 20, 2025Updated 9 months ago
• almounah / superdeye

  View on GitHub
  Indirect Syscall with TartarusGate Approach in Go
  ☆134Jul 8, 2025Updated 7 months ago
• c2pain / RustBird

  View on GitHub
  Early Bird APC Injection in Rust
  ☆63Oct 9, 2024Updated last year
• curated-intel / Attribution-to-IP

  View on GitHub
  A collection of methods to learn who the owner of an IP address is.
  ☆224Sep 29, 2025Updated 4 months ago
• CTI-Driven / LOLBins

  View on GitHub
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆127Apr 6, 2024Updated last year
• kidtronnix / restless-guest

  View on GitHub
  An offensive toolkit for restless guests #DEFCON33
  ☆54Aug 11, 2025Updated 6 months ago
• 0xbad53c / OffSecOps-Arsenal

  View on GitHub
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆45Aug 16, 2024Updated last year
• infosecn1nja / TTPMapper

  View on GitHub
  TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…
  ☆49Jun 21, 2025Updated 7 months ago