corumir / Practical-Tradecraft
Resources, articles, thoughts, datasets, papers on TI tradecraft
☆11Updated 6 years ago
Related projects: ⓘ
- Home to the ActorTrackr source code☆24Updated 7 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 5 years ago
- ☆18Updated 6 years ago
- Home to the ActorTrackr source code☆27Updated 7 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago
- A curated lust of awesome cyber civil society actors, project etc.☆10Updated 4 years ago
- Providing timelines based on OSINT Reports☆32Updated last year
- Local Maltego Transforms for crt.sh☆11Updated 7 years ago
- Sorta reverse implementation of ShoVAT - Also includes NMAP banner regex results☆17Updated 5 years ago
- A transform to show the latest copy of the website from the Wayback Machine☆15Updated 9 years ago
- ☆24Updated last year
- ☆15Updated this week
- CyCAT.org taxonomies☆14Updated 3 years ago
- IntelMQ command line tool to process events and send out email notifications.☆9Updated this week
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆40Updated 4 years ago
- A Python DNS crawler to find identical domain names under different TLDs.☆22Updated 5 years ago
- CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report …☆11Updated 3 years ago
- Python module to use the MISP Taxonomies☆29Updated last week
- Transforms for the AlienVault OTX service☆39Updated 7 years ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated 9 months ago
- Maltego Transforms to Query Traffic Records☆33Updated 8 years ago
- This repository is a curated list of pro bono incident response entities.☆19Updated last year
- A Maltego transform and machine to identify possible phishing vectors using permutated domains☆15Updated 8 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 2 years ago
- open-source intelligence gathering for SIEMs <3☆37Updated 7 years ago
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆21Updated 5 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆65Updated 9 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- Useful commands for infosec☆28Updated last year
- Maltego Local Transforms for truepeoplesearch.com☆11Updated 7 years ago