A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
☆118Oct 29, 2024Updated last year
Alternatives and similar repositories for The-CTI-Research-Guide
Users that are interested in The-CTI-Research-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆712Apr 21, 2025Updated 11 months ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆203Jul 3, 2024Updated last year
- The Threat Actor Profile Guide for CTI Analysts☆119Jul 15, 2023Updated 2 years ago
- Cyber threat intelligence tool suite.☆41Apr 3, 2025Updated last year
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆12Aug 14, 2025Updated 8 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Advanced Threat Hunting: Ransomware Group☆28Jul 9, 2025Updated 9 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated last year
- A curated list of Awesome Threat Intelligence Blogs☆526Mar 23, 2026Updated 3 weeks ago
- Live Feed of C2 servers, tools, and botnets☆766Apr 6, 2026Updated last week
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 6 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆128Dec 5, 2023Updated 2 years ago
- Storage for the IOCs I collect☆11Apr 3, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆287Mar 20, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆653Aug 4, 2025Updated 8 months ago
- A collection of companies that disclose adversary TTPs after they have been breached☆289Mar 14, 2026Updated last month
- A resource containing all the tools each ransomware gangs uses☆1,344Apr 1, 2026Updated 2 weeks ago
- Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups …☆402Jan 29, 2026Updated 2 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆304Mar 19, 2026Updated 3 weeks ago
- DFIQ is a collection of investigative questions and the approaches for answering them☆305Mar 10, 2026Updated last month
- PowerShell tools to help defenders hunt smarter, hunt harder.☆479Oct 29, 2025Updated 5 months ago
- Documentation and scripts to properly enable Windows event logs.☆688Oct 3, 2025Updated 6 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Extract the Procedures (TTP) from CTI reports☆18Dec 13, 2025Updated 4 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆50May 16, 2022Updated 3 years ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆162Updated this week
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated last year
- An introduction to detection engineering☆14Jan 3, 2025Updated last year
- A list of Per-Reviewed Journals, Books and Blogs on intelligence and Cybersecurity☆25Apr 1, 2024Updated 2 years ago
- reveal origins behind reverse proxies & hidden services☆37Aug 23, 2025Updated 7 months ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- Deploy open-source AI quickly and easily - Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A collection of methods to learn who the owner of an IP address is.☆230Sep 29, 2025Updated 6 months ago
- ☆36Jan 11, 2023Updated 3 years ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Sep 30, 2024Updated last year
- AIL framework - Analysis Information Leak framework☆901Updated this week
- Minimal Indicator Storage System☆11Feb 8, 2021Updated 5 years ago
- ☆78Feb 19, 2026Updated last month
- Small web frontend for using openAI's GPT-3.5 and GPT-4's API☆59Apr 9, 2025Updated last year