A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
☆117Oct 29, 2024Updated last year
Alternatives and similar repositories for The-CTI-Research-Guide
Users that are interested in The-CTI-Research-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆710Apr 21, 2025Updated 11 months ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆202Jul 3, 2024Updated last year
- The Threat Actor Profile Guide for CTI Analysts☆117Jul 15, 2023Updated 2 years ago
- Cyber threat intelligence tool suite.☆42Apr 3, 2025Updated 11 months ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆12Aug 14, 2025Updated 7 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Advanced Threat Hunting: Ransomware Group☆29Jul 9, 2025Updated 8 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated last year
- A curated list of Awesome Threat Intelligence Blogs☆515Feb 16, 2026Updated last month
- Live Feed of C2 servers, tools, and botnets☆760Updated this week
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 5 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆127Dec 5, 2023Updated 2 years ago
- Storage for the IOCs I collect☆11Mar 26, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆283Mar 20, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆648Aug 4, 2025Updated 7 months ago
- A collection of companies that disclose adversary TTPs after they have been breached☆289Mar 14, 2026Updated last week
- A resource containing all the tools each ransomware gangs uses☆1,332Mar 18, 2026Updated last week
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆304Mar 19, 2026Updated last week
- Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups …☆396Jan 29, 2026Updated last month
- DFIQ is a collection of investigative questions and the approaches for answering them☆301Mar 10, 2026Updated 2 weeks ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆476Oct 29, 2025Updated 4 months ago
- Documentation and scripts to properly enable Windows event logs.☆673Oct 3, 2025Updated 5 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Extract the Procedures (TTP) from CTI reports☆17Dec 13, 2025Updated 3 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆50May 16, 2022Updated 3 years ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆160Updated this week
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated last year
- An introduction to detection engineering☆14Jan 3, 2025Updated last year
- A list of Per-Reviewed Journals, Books and Blogs on intelligence and Cybersecurity☆25Apr 1, 2024Updated last year
- reveal origins behind reverse proxies & hidden services☆37Aug 23, 2025Updated 7 months ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A collection of methods to learn who the owner of an IP address is.☆228Sep 29, 2025Updated 5 months ago
- ☆36Jan 11, 2023Updated 3 years ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Sep 30, 2024Updated last year
- AIL framework - Analysis Information Leak framework☆893Updated this week
- Minimal Indicator Storage System☆11Feb 8, 2021Updated 5 years ago
- ☆77Feb 19, 2026Updated last month
- Small web frontend for using openAI's GPT-3.5 and GPT-4's API☆59Apr 9, 2025Updated 11 months ago