Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups and evolving to other types of threats.
☆400Jan 29, 2026Updated 2 months ago
Alternatives and similar repositories for ThreatActors-TTPs
Users that are interested in ThreatActors-TTPs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- IOCs collected during day-to-day activities☆119Updated this week
- An Archive of Ransomware Notes Past and Present Collected by Zscaler ThreatLabz☆411Updated this week
- A resource containing all the tools each ransomware gangs uses☆1,343Apr 1, 2026Updated last week
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆117Oct 29, 2024Updated last year
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 5 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Yet another Ransomware gang tracker☆568Mar 27, 2026Updated last week
- Telegram Monitor☆372Jun 10, 2025Updated 10 months ago
- Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups …☆46Updated this week
- A collection of phishing samples for researchers and detection developers.☆408Mar 27, 2026Updated last week
- Collection of Cyber Threat Intelligence sources from the deep and dark web☆6,766Updated this week
- Extract C2 Traffic☆254Nov 25, 2024Updated last year
- Automatically created C2 Feeds☆671Updated this week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆650Aug 4, 2025Updated 8 months ago
- TL;DR: Mutate a binary to identify potential exploit candidates☆11Jan 12, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- the transparent ransomware claim tracker 🥷🏼🧅🖥️☆1,097Mar 3, 2026Updated last month
- Encoder PHP webshell to bypass WAF using XOR operations.☆55Aug 2, 2023Updated 2 years ago
- Live Feed of C2 servers, tools, and botnets☆766Updated this week
- OpenCTI.BR ThreatFeeds Public Repository☆122Updated this week
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆758Feb 1, 2026Updated 2 months ago
- Interesting APT Report Collection And Some Special IOCs☆2,959Updated this week
- A curated list of Awesome Threat Intelligence Blogs☆522Mar 23, 2026Updated 2 weeks ago
- eml metadata parser.☆17Jan 24, 2023Updated 3 years ago
- ☆12Mar 28, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Indicators of compromise☆17Jan 29, 2026Updated 2 months ago
- CLI interface to get Ransomware attacks data from ransomwhat.telemetry.ltd☆13Feb 8, 2023Updated 3 years ago
- A repo containing some tooling build to assist with reverse engineering malware samples☆15Jul 22, 2023Updated 2 years ago
- Capture screenshots of onion services on an onion service.☆72Jun 11, 2024Updated last year
- Awesome Security lists for SOC/CERT/CTI☆1,315Apr 3, 2026Updated last week
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆110Apr 22, 2025Updated 11 months ago
- Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.☆25Jul 14, 2024Updated last year
- A command-line utility designed to recursively spider webpages for URLs. It works by actively traversing websites - following links embed…☆106Dec 8, 2025Updated 4 months ago
- Documentation and scripts to properly enable Windows event logs.☆674Oct 3, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- EDRaser is a powerful tool for remotely deleting access logs, Windows event logs, databases, and other files on remote machines. It offer…☆373Apr 6, 2024Updated 2 years ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆162Updated this week
- A meta-list of public references to threat actor profiles and APT group datasets.☆78Oct 2, 2025Updated 6 months ago
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆712Apr 21, 2025Updated 11 months ago
- Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, M…☆3,722Mar 21, 2026Updated 2 weeks ago
- Explore CVE 2023-30845 automatically across multiple subdomains☆16Sep 30, 2023Updated 2 years ago
- Map tracking ransomware, by OCD World Watch team☆487Feb 20, 2026Updated last month