The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
☆557May 9, 2023Updated 3 years ago
Alternatives and similar repositories for GOSINT
Users that are interested in GOSINT are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆304May 28, 2017Updated 8 years ago
- Malspider is a web spidering framework that detects characteristics of web compromises.☆417Nov 4, 2022Updated 3 years ago
- 16,432 Free Yara rules created by☆389Jun 1, 2019Updated 6 years ago
- DPS' Lightweight Investigation Notebook☆434Dec 31, 2023Updated 2 years ago
- Your Everyday Threat Intelligence☆1,982May 15, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Indicator Extractor☆141Jul 14, 2018Updated 7 years ago
- ☆39Aug 22, 2018Updated 7 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆157Jun 13, 2025Updated 11 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,559Jan 12, 2026Updated 4 months ago
- Malcom - Malware Communications Analyzer☆1,168Nov 29, 2017Updated 8 years ago
- "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security …☆1,035May 27, 2020Updated 5 years ago
- A Yara rule generator for finding related samples and hunting☆165Sep 11, 2022Updated 3 years ago
- Machinae Security Intelligence Collector☆540May 15, 2024Updated 2 years ago
- Command line tool for scanning streams within office documents plus xor db attack☆127Sep 23, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Extract and aggregate threat intelligence.☆910Jan 31, 2024Updated 2 years ago
- FAME Automates Malware Evaluation☆937May 3, 2026Updated 2 weeks ago
- AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project☆1,370May 15, 2026Updated last week
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- Modular file scanning/analysis framework☆622Oct 8, 2019Updated 6 years ago
- A Python RESTful API framework for online malware analysis and threat intelligence services.☆367May 21, 2024Updated 2 years ago
- Incident Response Forensic Framework☆610Nov 20, 2019Updated 6 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆114Feb 9, 2019Updated 7 years ago
- A curated list of Awesome Threat Intelligence resources☆10,219Jan 19, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- An information security preparedness tool to do adversarial simulation.☆1,139Apr 1, 2019Updated 7 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,867Nov 17, 2021Updated 4 years ago
- Scanning pastebin with yara rules☆1,135Jan 10, 2026Updated 4 months ago
- Loki - Simple IOC and YARA Scanner☆3,756Jan 12, 2026Updated 4 months ago
- An open source framework for enterprise level automated analysis.☆392Jun 27, 2022Updated 3 years ago
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,916Jul 25, 2025Updated 9 months ago
- Automated Tactics Techniques & Procedures☆261May 26, 2023Updated 2 years ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,739Sep 23, 2025Updated 7 months ago
- Tool to gather Threat Intelligence indicators from publicly available sources☆657Mar 14, 2019Updated 7 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…☆302Apr 24, 2020Updated 6 years ago
- ☆1,094May 1, 2019Updated 7 years ago
- Kaspersky's GReAT KLara☆730Jul 24, 2024Updated last year
- Virtual Machine for Adversary Emulation and Threat Hunting☆1,315Jan 22, 2025Updated last year
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆156Dec 20, 2019Updated 6 years ago
- Indicators of Compromises (IOC) of our various investigations☆1,952May 14, 2026Updated last week
- Python script to decode common encoded PowerShell scripts☆216Jun 13, 2018Updated 7 years ago