Alternatives and similar repositories for threat-INTel

Users that are interested in threat-INTel are comparing it to the libraries listed below

• openhunting-io / ohcti-malwareinfra
  Threat Hunting Malware Infrastructure
  ☆10Updated 2 years ago
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• RustyNoob-619 / 100-Days-of-YARA-2024
  ☆19Updated last year
• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆46Updated last year
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆45Updated 3 years ago
• ThreatMon / ThreatMon-Reports-IOC
  ☆52Updated 3 months ago
• SimoneCagol / sigma-rules-crawler
  ☆33Updated 2 months ago
• Abjuri5t / SarlackLab
  ☆34Updated last month
• EyupErgin / HuntRisePro
  Specific C2 Detection Tool Written To Detect C2 Servers From RisePro Stealer Malware.
  ☆13Updated 2 years ago
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆26Updated 2 years ago
• Xanderux / C2watcher
  Daily C2 threat intelligence feed
  ☆19Updated this week
• 0xMuhannad / ThreatScanner
  multi-threaded script uses VirusTotal and AbuseIPDB APIs and generate an excel with all needed data
  ☆10Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 3 years ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆60Updated last year
• abusech / ThreatFox
  Open IOC sharing platform
  ☆63Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• MalGamy / YARA_Rules
  ☆67Updated 2 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆53Updated 2 years ago
• Almorabea / Catalyzer
  A small tool that helps Incident responders and SOC analysts do a quick and initial analysis/assessment of malicious files
  ☆27Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆116Updated 4 years ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆23Updated 2 years ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆36Updated last week
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆62Updated last year
• intelshare / Forums-For-RFI
  Data breaches, Leaks, Malwares Forums List <Please Use Vpn/TOR don't click on Link directly bad OPSEC>
  ☆58Updated 2 months ago
• infinitumitlabs / Karakurt-Hacking-Team-CTI
  IOC Data Obtained From Karakurt Hacking Team's Internal Infrastructure
  ☆34Updated 3 years ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago