A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
☆120Oct 29, 2024Updated last year
Alternatives and similar repositories for The-CTI-Research-Guide
Users that are interested in The-CTI-Research-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆722Apr 25, 2026Updated last month
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆205Jul 3, 2024Updated last year
- The Threat Actor Profile Guide for CTI Analysts☆120Jul 15, 2023Updated 2 years ago
- Cyber threat intelligence tool suite.☆41Apr 3, 2025Updated last year
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆12Aug 14, 2025Updated 9 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Advanced Threat Hunting: Ransomware Group☆29Jul 9, 2025Updated 10 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆54Oct 23, 2024Updated last year
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated 2 years ago
- A curated list of Awesome Threat Intelligence Blogs☆544Apr 27, 2026Updated 3 weeks ago
- Live Feed of C2 servers, tools, and botnets☆775Apr 13, 2026Updated last month
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- A collection of CVEs weaponized by ransomware operators☆140May 9, 2026Updated 2 weeks ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆128Dec 5, 2023Updated 2 years ago
- Storage for the IOCs I collect☆11Apr 3, 2026Updated last month
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆289Mar 20, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆655Aug 4, 2025Updated 9 months ago
- A collection of companies that disclose adversary TTPs after they have been breached☆301May 11, 2026Updated 2 weeks ago
- A resource containing all the tools each ransomware gangs uses☆1,367May 11, 2026Updated 2 weeks ago
- Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups …☆405Jan 29, 2026Updated 3 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆315May 16, 2026Updated last week
- DFIQ is a collection of investigative questions and the approaches for answering them☆309Mar 10, 2026Updated 2 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆483Oct 29, 2025Updated 6 months ago
- Documentation and scripts to properly enable Windows event logs.☆704Oct 3, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Extract the Procedures (TTP) from CTI reports☆18Dec 13, 2025Updated 5 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆52May 16, 2022Updated 4 years ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆164May 19, 2026Updated last week
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated last year
- An introduction to detection engineering☆14Jan 3, 2025Updated last year
- A list of Per-Reviewed Journals, Books and Blogs on intelligence and Cybersecurity☆26Apr 1, 2024Updated 2 years ago
- reveal origins behind reverse proxies & hidden services☆37Aug 23, 2025Updated 9 months ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A collection of methods to learn who the owner of an IP address is.☆234Sep 29, 2025Updated 7 months ago
- ☆36Jan 11, 2023Updated 3 years ago
- Collection of Docker honeypot logs from 2021 - 2024☆37Sep 30, 2024Updated last year
- AIL framework - Analysis Information Leak framework☆948May 15, 2026Updated last week
- Minimal Indicator Storage System☆11Feb 8, 2021Updated 5 years ago
- Small web frontend for using openAI's GPT-3.5 and GPT-4's API☆59May 13, 2026Updated last week
- ☆81Feb 19, 2026Updated 3 months ago