bobby-tablez/TTP-Threat-Feeds external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

bobby-tablez/TTP-Threat-Feeds

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bobby-tablez/TTP-Threat-Feeds)

Close

bobby-tablez / TTP-Threat-FeedsView on GitHubMore

• External links
• Readme badge

Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨

☆70May 2, 2026Updated last week

Alternatives and similar repositories for TTP-Threat-Feeds

Users that are interested in TTP-Threat-Feeds are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• dobin / ttpExtractor

  View on GitHub
  Extract the Procedures (TTP) from CTI reports
  ☆18Dec 13, 2025Updated 4 months ago
• karmine05 / DEF3ND

  View on GitHub
  🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…
  ☆45Jun 28, 2025Updated 10 months ago
• rstcloud / rstcloud-import2misp

  View on GitHub
  Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.
  ☆18Jun 16, 2025Updated 10 months ago
• strozfriedberg / DUALITY

  View on GitHub
  ☆18Feb 29, 2024Updated 2 years ago
• Bournemouth2600 / Detection-Engineering-Intro

  View on GitHub
  An introduction to detection engineering
  ☆14Jan 3, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• JPMinty / Detection_Engineering_Signatures

  View on GitHub
  YARA, SIGMA, SNORT Rules based on Malware Analysis
  ☆17Apr 23, 2025Updated last year
• SkillAegis / SkillAegis

  View on GitHub
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆37Oct 21, 2025Updated 6 months ago
• kozmer / silentpulse

  View on GitHub
  single-threaded event driven sleep obfuscation poc for linux
  ☆38Jun 14, 2025Updated 10 months ago
• CroodSolutions / BeaconatorC2

  View on GitHub
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆94Jan 14, 2026Updated 3 months ago
• AttackIQ / SigmAIQ

  View on GitHub
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆93Nov 3, 2025Updated 6 months ago
• deriv-security / MeetC2

  View on GitHub
  (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.
  ☆139Apr 6, 2026Updated last month
• bobby-tablez / Invoke-Mathfuscation

  View on GitHub
  A quick command line utility that generates uses simple addition to obfuscate individual characters, then executes it
  ☆16Jun 13, 2025Updated 10 months ago
• ChaitanyaHaritash / IllusiveFog

  View on GitHub
  Windows Administrator level Implant.
  ☆50Sep 28, 2024Updated last year
• Group-IB / pythf

  View on GitHub
  Malware detonation platform Polygon integration
  ☆10Aug 1, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• tsale / awesome-dfir-skills

  View on GitHub
  A curated collection of DFIR skills and workflows for InfoSec practitioners.
  ☆290Apr 10, 2026Updated 3 weeks ago
• muchdogesec / txt2stix

  View on GitHub
  Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.
  ☆81Apr 17, 2026Updated 3 weeks ago
• CTI-Driven / Advanced-Threat-Hunting-Ransomware-Groups-Affiliates

  View on GitHub
  Advanced Threat Hunting: Ransomware Group
  ☆28Jul 9, 2025Updated 10 months ago
• 100DaysofYARA / 2025

  View on GitHub
  Rules shared by the community from 100 Days of YARA 2025
  ☆38Jan 2, 2026Updated 4 months ago
• Security-Onion-Solutions / securityonion-capme

  View on GitHub
  ☆12Oct 21, 2020Updated 5 years ago
• 0xcf80 / ShellCodeLoader_Indirect_Syscalls

  View on GitHub
  Shellcode Loader using indirect syscalls
  ☆16Jan 21, 2024Updated 2 years ago
• christosgalano / sKaleQL

  View on GitHub
  sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…
  ☆20May 20, 2025Updated 11 months ago
• chrisdfir / sysmon2splunk

  View on GitHub
  The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.
  ☆10Sep 28, 2020Updated 5 years ago
• matthw / malware_analysis

  View on GitHub
  ☆18Mar 26, 2024Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• nisargsuthar / Veritas

  View on GitHub
  A hex viewer for the sleuths!
  ☆20Nov 7, 2025Updated 6 months ago
• khadafigans / Laravel-RCE-Exploitation-Toolkit

  View on GitHub
  Laravel RCE Exploitation Toolkit
  ☆57Nov 8, 2025Updated 6 months ago
• The-Shadowserver-Foundation / api_utils

  View on GitHub
  Sample programs to access the API
  ☆112Dec 8, 2025Updated 5 months ago
• conexioninversa / WOPR

  View on GitHub
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Apr 22, 2024Updated 2 years ago
• 2igosha / sunburst_dga

  View on GitHub
  ☆22Dec 22, 2020Updated 5 years ago
• SIFalcon / Detection

  View on GitHub
  ☆23Jul 7, 2023Updated 2 years ago
• wroersma / CTFd-multi-answer

  View on GitHub
  mult-answer plugin for CTFd
  ☆15Aug 22, 2019Updated 6 years ago
• zarkones / BloodfangC2

  View on GitHub
  Modern PIC implant for Windows (64 & 32 bit)
  ☆107Jul 23, 2025Updated 9 months ago
• 0xTriboulet / Abomination

  View on GitHub
  A synergized Visual Studio and Rust development environment
  ☆19Jan 25, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ThreatMon / ThreatMon-Daily-C2-Feeds

  View on GitHub
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆69Dec 27, 2023Updated 2 years ago
• moval0x1 / NoDelete

  View on GitHub
  NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.
  ☆49Nov 17, 2025Updated 5 months ago
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆155Jul 23, 2025Updated 9 months ago
• Abjuri5t / SarlackLab

  View on GitHub
  ☆34Apr 29, 2026Updated last week
• KostasKoutrou / KQL

  View on GitHub
  KQL Queries for Advanced Hunting / Log Analytics
  ☆13Jan 29, 2026Updated 3 months ago
• OFFENSAI / notyet

  View on GitHub
  Did you contain the compromised identity? notyet
  ☆40Updated this week
• OmniacsDAO / numerdash

  View on GitHub
  R Shiny Web Interface for Analyzing Numerai Tournament Performance
  ☆15Jan 27, 2020Updated 6 years ago