Alternatives and similar repositories for targetedthreats

Users that are interested in targetedthreats are comparing it to the libraries listed below

• CiviCERT / suspicious-email-submitter

  View on GitHub
  The Suspicious Email Submitter is a discontinued browser extension (Chrome, Chromium, Firefox) for the easy submission of suspicious emai…
  ☆15Mar 6, 2023Updated 2 years ago
• mfc / baseline-org-policies

  View on GitHub
  Baseline organizational policies and practices
  ☆10Apr 17, 2017Updated 8 years ago
• DefensePointSecurity / threat_note

  View on GitHub
  DPS' Lightweight Investigation Notebook
  ☆433Dec 31, 2023Updated 2 years ago
• thirdeyeintelligence / IOCs-in-CSV-format

  View on GitHub
  The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research
  ☆12Jun 10, 2017Updated 8 years ago
• robbyFux / vtTool

  View on GitHub
  Tools
  ☆13Apr 20, 2023Updated 2 years ago
• michael-yip / MaltegoVT

  View on GitHub
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆82Nov 29, 2015Updated 10 years ago
• botherder / cryptoletter

  View on GitHub
  Simple script for PGP encrypted newsletter
  ☆26Feb 13, 2016Updated 10 years ago
• andrewkabai / vulnwindrv

  View on GitHub
  Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…
  ☆13Jan 29, 2013Updated 13 years ago
• citizenlab / malware-indicators

  View on GitHub
  Citizen Lab Malware Reports
  ☆279Oct 4, 2020Updated 5 years ago
• xme / mime2vt

  View on GitHub
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Mar 11, 2016Updated 9 years ago
• sroberts / awesome-iocs

  View on GitHub
  A collection of sources of indicators of compromise.
  ☆947May 8, 2025Updated 9 months ago
• armbues / ioc_parser

  View on GitHub
  Tool to extract indicators of compromise from security reports in PDF format
  ☆439Feb 24, 2023Updated 2 years ago
• codexgigassys / codex-backend

  View on GitHub
  Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…
  ☆156Dec 20, 2019Updated 6 years ago
• MITRECND / chopshop

  View on GitHub
  Protocol Analysis/Decoder Framework
  ☆497Dec 19, 2022Updated 3 years ago
• 0x4D31 / deception-as-detection

  View on GitHub
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆291Oct 28, 2017Updated 8 years ago
• anl-cyberscience / LQMToolset

  View on GitHub
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Oct 24, 2018Updated 7 years ago
• foxglovesec / httpscreenshot

  View on GitHub
  ☆16Oct 23, 2015Updated 10 years ago
• ikoniaris / thug-vagrant

  View on GitHub
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Feb 26, 2015Updated 10 years ago
• SAFETAG / SAFETAG

  View on GitHub
  SAFETAG is a curricula, a methodology, and a framework for security auditors working with advocacy groups.
  ☆82Updated this week
• theabraxas / Battalion

  View on GitHub
  Battalion is a tool used to automate reconnaissance and assist both pentesters and internal security/admin teams.
  ☆43Jan 13, 2026Updated last month
• g-les / macho_similarity

  View on GitHub
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Mar 21, 2024Updated last year
• davidoren / CuckooSploit

  View on GitHub
  An environment for comprehensive, automated analysis of web-based exploits, based on Cuckoo sandbox.
  ☆124Aug 10, 2015Updated 10 years ago
• AlienVault-OTX / yabin

  View on GitHub
  A Yara rule generator for finding related samples and hunting
  ☆162Sep 11, 2022Updated 3 years ago
• SupportIntelligence / Icewater

  View on GitHub
  16,432 Free Yara rules created by
  ☆390Jun 1, 2019Updated 6 years ago
• FuzzySecurity / CapstoneKeystone-PowerShell

  View on GitHub
  PowerShell Module Bindings for Capstone/Keystone
  ☆25Nov 15, 2016Updated 9 years ago
• omriher / CapTipper

  View on GitHub
  Malicious HTTP traffic explorer
  ☆725Mar 16, 2023Updated 2 years ago
• raesene / rorascanner

  View on GitHub
  Ruby Oracle Security Scanner
  ☆16Jul 9, 2012Updated 13 years ago
• ciscocsirt / GOSINT

  View on GitHub
  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
  ☆554May 9, 2023Updated 2 years ago
• 4chr4f / PoC-Exploit-Mirror

  View on GitHub
  Archive Mirror for recently republished PoC/Exploit code
  ☆17Nov 26, 2017Updated 8 years ago
• JPCERTCC / aa-tools

  View on GitHub
  Artifact analysis tools by JPCERT/CC Analysis Center
  ☆464Aug 14, 2025Updated 6 months ago
• stephenbrannon / IOCextractor

  View on GitHub
  IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
  ☆134Jan 14, 2016Updated 10 years ago
• bontchev / wlscrape

  View on GitHub
  A tool for scrapping the possible malware from the Wikileaks AKP leak
  ☆101Oct 24, 2016Updated 9 years ago
• HurricaneLabs / machinae

  View on GitHub
  Machinae Security Intelligence Collector
  ☆538May 15, 2024Updated last year
• sroberts / cacador

  View on GitHub
  Indicator Extractor
  ☆141Jul 14, 2018Updated 7 years ago
• rickey-g / fancybear

  View on GitHub
  Fancy Bear Source Code
  ☆263Jan 9, 2017Updated 9 years ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• tehsyntx / loffice

  View on GitHub
  Lazy Office Analyzer
  ☆121Feb 15, 2017Updated 9 years ago
• giMini / NOAH

  View on GitHub
  PowerShell No Agent Hunting
  ☆111Apr 23, 2018Updated 7 years ago
• viper-framework / viper

  View on GitHub
  Binary analysis and management framework
  ☆1,557Jun 7, 2023Updated 2 years ago