bobby-tablez/TTP-Threat-Feeds external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

bobby-tablez/TTP-Threat-Feeds

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bobby-tablez/TTP-Threat-Feeds)

Close

bobby-tablez / TTP-Threat-FeedsView on GitHubMore

• External links
• Readme badge

Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨

☆72May 22, 2026Updated last week

Alternatives and similar repositories for TTP-Threat-Feeds

Users that are interested in TTP-Threat-Feeds are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• dobin / ttpExtractor

  View on GitHub
  Extract the Procedures (TTP) from CTI reports
  ☆18Dec 13, 2025Updated 5 months ago
• karmine05 / DEF3ND

  View on GitHub
  🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…
  ☆45Jun 28, 2025Updated 11 months ago
• rstcloud / rstcloud-import2misp

  View on GitHub
  Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.
  ☆18Jun 16, 2025Updated 11 months ago
• strozfriedberg / DUALITY

  View on GitHub
  ☆18Feb 29, 2024Updated 2 years ago
• Bournemouth2600 / Detection-Engineering-Intro

  View on GitHub
  An introduction to detection engineering
  ☆14Jan 3, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• JPMinty / Detection_Engineering_Signatures

  View on GitHub
  YARA, SIGMA, SNORT Rules based on Malware Analysis
  ☆17Apr 23, 2025Updated last year
• SkillAegis / SkillAegis

  View on GitHub
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆37Oct 21, 2025Updated 7 months ago
• kozmer / silentpulse

  View on GitHub
  single-threaded event driven sleep obfuscation poc for linux
  ☆38Jun 14, 2025Updated 11 months ago
• CroodSolutions / BeaconatorC2

  View on GitHub
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆93May 22, 2026Updated last week
• AttackIQ / SigmAIQ

  View on GitHub
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆94Nov 3, 2025Updated 6 months ago
• bobby-tablez / Invoke-Mathfuscation

  View on GitHub
  A quick command line utility that generates uses simple addition to obfuscate individual characters, then executes it
  ☆16Jun 13, 2025Updated 11 months ago
• ChaitanyaHaritash / IllusiveFog

  View on GitHub
  Windows Administrator level Implant.
  ☆50Sep 28, 2024Updated last year
• Group-IB / pythf

  View on GitHub
  Malware detonation platform Polygon integration
  ☆10Aug 1, 2023Updated 2 years ago
• tsale / awesome-dfir-skills

  View on GitHub
  A curated collection of DFIR skills and workflows for InfoSec practitioners.
  ☆312May 14, 2026Updated 2 weeks ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• muchdogesec / txt2stix

  View on GitHub
  Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.
  ☆81May 23, 2026Updated last week
• CTI-Driven / Advanced-Threat-Hunting-Ransomware-Groups-Affiliates

  View on GitHub
  Advanced Threat Hunting: Ransomware Group
  ☆29Jul 9, 2025Updated 10 months ago
• 100DaysofYARA / 2025

  View on GitHub
  Rules shared by the community from 100 Days of YARA 2025
  ☆38Jan 2, 2026Updated 4 months ago
• Security-Onion-Solutions / securityonion-capme

  View on GitHub
  ☆12Oct 21, 2020Updated 5 years ago
• 0xcf80 / ShellCodeLoader_Indirect_Syscalls

  View on GitHub
  Shellcode Loader using indirect syscalls
  ☆16Jan 21, 2024Updated 2 years ago
• christosgalano / sKaleQL

  View on GitHub
  sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…
  ☆20May 20, 2025Updated last year
• chrisdfir / sysmon2splunk

  View on GitHub
  The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.
  ☆10Sep 28, 2020Updated 5 years ago
• nisargsuthar / Veritas

  View on GitHub
  A hex viewer for the sleuths!
  ☆20Nov 7, 2025Updated 6 months ago
• matthw / malware_analysis

  View on GitHub
  ☆18Mar 26, 2024Updated 2 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• khadafigans / Laravel-RCE-Exploitation-Toolkit

  View on GitHub
  Laravel RCE Exploitation Toolkit
  ☆57Nov 8, 2025Updated 6 months ago
• T1erno / bin2shellcode

  View on GitHub
  C++ tool and library for converting .bin files to shellcode in multiple output formats.
  ☆34Aug 18, 2025Updated 9 months ago
• The-Shadowserver-Foundation / api_utils

  View on GitHub
  Sample programs to access the API
  ☆115Dec 8, 2025Updated 5 months ago
• conexioninversa / WOPR

  View on GitHub
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Apr 22, 2024Updated 2 years ago
• 2igosha / sunburst_dga

  View on GitHub
  ☆22Dec 22, 2020Updated 5 years ago
• SIFalcon / Detection

  View on GitHub
  ☆24Jul 7, 2023Updated 2 years ago
• zarkones / BloodfangC2

  View on GitHub
  Modern PIC implant for Windows (64 & 32 bit)
  ☆107Jul 23, 2025Updated 10 months ago
• 0xTriboulet / Abomination

  View on GitHub
  A synergized Visual Studio and Rust development environment
  ☆19Jan 25, 2025Updated last year
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆155Jul 23, 2025Updated 10 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• moval0x1 / NoDelete

  View on GitHub
  NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.
  ☆50Nov 17, 2025Updated 6 months ago
• ThreatMon / ThreatMon-Daily-C2-Feeds

  View on GitHub
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆69Dec 27, 2023Updated 2 years ago
• Abjuri5t / SarlackLab

  View on GitHub
  ☆34Apr 29, 2026Updated last month
• OFFENSAI / notyet

  View on GitHub
  Did you contain the compromised identity? notyet
  ☆40May 4, 2026Updated 3 weeks ago
• Malshare / Frontend

  View on GitHub
  Frontend for MalShare.com
  ☆18Apr 25, 2026Updated last month
• JCSteiner / SGCC---public

  View on GitHub
  Command and Control Framework using powershell implants
  ☆36Jun 17, 2025Updated 11 months ago
• RedSiege / Chromatophore

  View on GitHub
  Utilities for obfuscating shellcode
  ☆104Mar 24, 2026Updated 2 months ago