Alternatives and similar repositories for threat-INTel

Users that are interested in threat-INTel are comparing it to the libraries listed below

• openhunting-io / ohcti-malwareinfra
  Threat Hunting Malware Infrastructure
  ☆10Updated 2 years ago
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆45Updated 3 years ago
• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆46Updated last year
• infinitumitlabs / Karakurt-Hacking-Team-CTI
  IOC Data Obtained From Karakurt Hacking Team's Internal Infrastructure
  ☆34Updated 3 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 3 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• RustyNoob-619 / 100-Days-of-YARA-2024
  ☆21Updated last year
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆26Updated 2 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆75Updated 3 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆37Updated last month
• J4FSec / In0ri
  Website defacement attack detection with deep learning
  ☆62Updated 11 months ago
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆106Updated last month
• wand3rlust / Hitchhikers-Guide-to-URL-Analysis
  Collection of Tools & Techniques for analyzing URLs
  ☆33Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆116Updated 4 years ago
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• pr0xylife / IcedID
  ☆31Updated 2 years ago
• DODC / turncoat
  ☆42Updated 9 months ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Updated 3 years ago
• conexioninversa / WOPR
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Updated last year
• abusech / ThreatFox
  Open IOC sharing platform
  ☆65Updated last week
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆35Updated 3 years ago
• 0xMuhannad / ThreatScanner
  multi-threaded script uses VirusTotal and AbuseIPDB APIs and generate an excel with all needed data
  ☆10Updated 2 years ago
• martinkubecka / C2Detective
  Application for detecting command and control (C2) communication through network traffic analysis.
  ☆15Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• SimoneCagol / sigma-rules-crawler
  ☆33Updated 2 months ago
• eremit4 / cs-discovery
  Detecting Cobalt Strike Team Servers on targets through traffic telemetry.
  ☆22Updated last year