ciscocsirt / GOSINT

Related projects: ⓘ

• HurricaneLabs / machinae
  Machinae Security Intelligence Collector
  ☆502Updated 4 months ago
• keithjjones / hostintel
  A modular Python application to collect intelligence for malicious hosts.
  ☆260Updated 3 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆421Updated 8 months ago
• praetorian-inc / purple-team-attack-automation
  Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs
  ☆712Updated 4 years ago
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆378Updated 5 years ago
• cylance / CyBot
  Open Source Threat Intelligence Chat Bot
  ☆315Updated 4 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆280Updated 6 years ago
• sroberts / awesome-iocs
  A collection of sources of indicators of compromise.
  ☆784Updated 2 months ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆462Updated 5 years ago
• diogo-fernan / malsub
  A Python RESTful API framework for online malware analysis and threat intelligence services.
  ☆365Updated 3 months ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆820Updated 7 months ago
• endgameinc / RTA
  ☆1,048Updated 5 years ago
• uber-common / metta
  An information security preparedness tool to do adversarial simulation.
  ☆1,089Updated 5 years ago
• toolswatch / vFeed
  The Correlated CVE Vulnerability And Threat Intelligence Database API
  ☆926Updated 3 years ago
• AlienVault-OTX / ApiV2
  Version 2 of the ThreatCrowd API
  ☆270Updated last year
• fdiskyou / threat-INTel
  ☆237Updated this week
• bhdresh / Dejavu
  DejaVU - Open Source Deception Framework
  ☆394Updated last year
• 0x4D31 / honeybits
  A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the att…
  ☆272Updated 5 years ago
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆273Updated last year
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆845Updated 2 weeks ago
• GreyNoise-Intelligence / api.greynoise.io
  Code + documentation for the public GreyNoise API
  ☆313Updated 3 years ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆471Updated 2 years ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆364Updated 5 years ago
• orlikoski / Skadi
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆489Updated last year
• aplura / Tango
  Honeypot Intelligence with Splunk
  ☆252Updated 5 years ago
• Ptr32Void / OSTrICa
  ☆306Updated 7 years ago
• cloudtracer / ThreatPinchLookup
  Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
  ☆345Updated 6 years ago
• redhuntlabs / RedHunt-OS
  Virtual Machine for Adversary Emulation and Threat Hunting
  ☆1,234Updated 4 years ago
• sans-blue-team / blue-team-wiki
  Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
  ☆437Updated 2 years ago
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆616Updated 4 years ago