Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨
☆72Jun 11, 2026Updated last week
Alternatives and similar repositories for TTP-Threat-Feeds
Users that are interested in TTP-Threat-Feeds are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…☆45Jun 28, 2025Updated 11 months ago
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Jun 16, 2025Updated last year
- ☆18Feb 29, 2024Updated 2 years ago
- An introduction to detection engineering☆14Jan 3, 2025Updated last year
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆17Apr 23, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆38Jun 5, 2026Updated 2 weeks ago
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆94May 25, 2026Updated 3 weeks ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆95Nov 3, 2025Updated 7 months ago
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆139Apr 6, 2026Updated 2 months ago
- Windows Administrator level Implant.☆50Sep 28, 2024Updated last year
- single-threaded event driven sleep obfuscation poc for linux☆51Jun 14, 2025Updated last year
- Malware detonation platform Polygon integration☆10Aug 1, 2023Updated 2 years ago
- A curated collection of DFIR skills and workflows for InfoSec practitioners.☆318May 14, 2026Updated last month
- Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.☆81May 23, 2026Updated 3 weeks ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Advanced Threat Hunting: Ransomware Group☆29Jul 9, 2025Updated 11 months ago
- Rules shared by the community from 100 Days of YARA 2025☆38Jan 2, 2026Updated 5 months ago
- ☆12Oct 21, 2020Updated 5 years ago
- Shellcode Loader using indirect syscalls☆16Jan 21, 2024Updated 2 years ago
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆20May 20, 2025Updated last year
- The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.☆10Sep 28, 2020Updated 5 years ago
- ☆18Mar 26, 2024Updated 2 years ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 7 months ago
- Laravel RCE Exploitation Toolkit☆57Nov 8, 2025Updated 7 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- C++ tool and library for converting .bin files to shellcode in multiple output formats.☆33Aug 18, 2025Updated 10 months ago
- Sample programs to access the API☆116Dec 8, 2025Updated 6 months ago
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Apr 22, 2024Updated 2 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- ☆24Jul 7, 2023Updated 2 years ago
- mult-answer plugin for CTFd☆15Aug 22, 2019Updated 6 years ago
- Modern PIC implant for Windows (64 & 32 bit)☆106Jul 23, 2025Updated 10 months ago
- A synergized Visual Studio and Rust development environment☆19Jan 25, 2025Updated last year
- NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.☆50Nov 17, 2025Updated 7 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆69Dec 27, 2023Updated 2 years ago
- Local SYSTEM auth trigger for relaying - X☆158Jul 23, 2025Updated 10 months ago
- ☆34Apr 29, 2026Updated last month
- KQL Queries for Advanced Hunting / Log Analytics☆13Jan 29, 2026Updated 4 months ago
- Did you contain the compromised identity? notyet☆40May 4, 2026Updated last month
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆69Jan 5, 2026Updated 5 months ago
- Command and Control Framework using powershell implants☆36Jun 17, 2025Updated last year