A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
☆119Oct 29, 2024Updated last year
Alternatives and similar repositories for The-CTI-Research-Guide
Users that are interested in The-CTI-Research-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence☆720Apr 25, 2026Updated last week
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆205Jul 3, 2024Updated last year
- The Threat Actor Profile Guide for CTI Analysts☆120Jul 15, 2023Updated 2 years ago
- Cyber threat intelligence tool suite.☆41Apr 3, 2025Updated last year
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆12Aug 14, 2025Updated 8 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Advanced Threat Hunting: Ransomware Group☆28Jul 9, 2025Updated 9 months ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆54Oct 23, 2024Updated last year
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated last year
- A curated list of Awesome Threat Intelligence Blogs☆540Apr 27, 2026Updated last week
- Live Feed of C2 servers, tools, and botnets☆772Apr 13, 2026Updated 3 weeks ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 6 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆128Dec 5, 2023Updated 2 years ago
- Storage for the IOCs I collect☆11Apr 3, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆288Mar 20, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆655Aug 4, 2025Updated 9 months ago
- A collection of companies that disclose adversary TTPs after they have been breached☆289Mar 14, 2026Updated last month
- A resource containing all the tools each ransomware gangs uses☆1,356Apr 1, 2026Updated last month
- Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups …☆404Jan 29, 2026Updated 3 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆314Apr 29, 2026Updated last week
- DFIQ is a collection of investigative questions and the approaches for answering them☆307Mar 10, 2026Updated last month
- PowerShell tools to help defenders hunt smarter, hunt harder.☆479Oct 29, 2025Updated 6 months ago
- Documentation and scripts to properly enable Windows event logs.☆694Oct 3, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Extract the Procedures (TTP) from CTI reports☆18Dec 13, 2025Updated 4 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆51May 16, 2022Updated 3 years ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆164Updated this week
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated last year
- An introduction to detection engineering☆14Jan 3, 2025Updated last year
- A list of Per-Reviewed Journals, Books and Blogs on intelligence and Cybersecurity☆26Apr 1, 2024Updated 2 years ago
- reveal origins behind reverse proxies & hidden services☆37Aug 23, 2025Updated 8 months ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- A collection of methods to learn who the owner of an IP address is.☆233Sep 29, 2025Updated 7 months ago
- ☆36Jan 11, 2023Updated 3 years ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Sep 30, 2024Updated last year
- AIL framework - Analysis Information Leak framework☆939Apr 29, 2026Updated last week
- Minimal Indicator Storage System☆11Feb 8, 2021Updated 5 years ago
- Small web frontend for using openAI's GPT-3.5 and GPT-4's API☆59Apr 9, 2025Updated last year
- ☆78Feb 19, 2026Updated 2 months ago