The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
☆556May 9, 2023Updated 2 years ago
Alternatives and similar repositories for GOSINT
Users that are interested in GOSINT are comparing it to the libraries listed below
Sorting:
- ☆305May 28, 2017Updated 8 years ago
- 16,432 Free Yara rules created by☆390Jun 1, 2019Updated 6 years ago
- Malspider is a web spidering framework that detects characteristics of web compromises.☆417Nov 4, 2022Updated 3 years ago
- DPS' Lightweight Investigation Notebook☆433Dec 31, 2023Updated 2 years ago
- Your Everyday Threat Intelligence☆1,951Feb 12, 2026Updated 2 weeks ago
- "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security …☆1,035May 27, 2020Updated 5 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,486Jan 12, 2026Updated last month
- A Yara rule generator for finding related samples and hunting☆162Sep 11, 2022Updated 3 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆157Jun 13, 2025Updated 8 months ago
- Malcom - Malware Communications Analyzer☆1,164Nov 29, 2017Updated 8 years ago
- An information security preparedness tool to do adversarial simulation.☆1,139Apr 1, 2019Updated 6 years ago
- A Python RESTful API framework for online malware analysis and threat intelligence services.☆368May 21, 2024Updated last year
- Modular file scanning/analysis framework☆622Oct 8, 2019Updated 6 years ago
- AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project☆1,362Feb 23, 2026Updated last week
- Command line tool for scanning streams within office documents plus xor db attack☆127Sep 23, 2023Updated 2 years ago
- Indicator Extractor☆141Jul 14, 2018Updated 7 years ago
- ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…☆302Apr 24, 2020Updated 5 years ago
- Incident Response Forensic Framework☆611Nov 20, 2019Updated 6 years ago
- Scanning pastebin with yara rules☆1,127Jan 10, 2026Updated last month
- FAME Automates Malware Evaluation☆929Dec 16, 2025Updated 2 months ago
- Automated Tactics Techniques & Procedures☆259May 26, 2023Updated 2 years ago
- Loki - Simple IOC and YARA Scanner☆3,726Jan 12, 2026Updated last month
- Machinae Security Intelligence Collector☆539May 15, 2024Updated last year
- Virtual Machine for Adversary Emulation and Threat Hunting☆1,314Jan 22, 2025Updated last year
- Threat Feed Aggregation, Made Easy☆169Jul 13, 2020Updated 5 years ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,715Sep 23, 2025Updated 5 months ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆156Dec 20, 2019Updated 6 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- A WebSocket C2 Tool☆411Nov 24, 2017Updated 8 years ago
- (extensible) Data Exfiltration Toolkit (DET)☆827Nov 3, 2017Updated 8 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆633Jun 20, 2017Updated 8 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆270Jun 15, 2021Updated 4 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,850Nov 17, 2021Updated 4 years ago
- Python script to decode common encoded PowerShell scripts☆217Jun 13, 2018Updated 7 years ago
- A PowerShell based utility for the creation of malicious Office macro documents.☆1,109Nov 3, 2017Updated 8 years ago
- Extract and aggregate threat intelligence.☆906Jan 31, 2024Updated 2 years ago
- ☆1,092May 1, 2019Updated 6 years ago
- An open source framework for enterprise level automated analysis.☆394Jun 27, 2022Updated 3 years ago
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆388Jun 25, 2024Updated last year