Alternatives and similar repositories for threat-INTel

Users that are interested in threat-INTel are comparing it to the libraries listed below

• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 3 years ago
• openhunting-io / ohcti-malwareinfra
  Threat Hunting Malware Infrastructure
  ☆11Updated last year
• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆44Updated 10 months ago
• RustyNoob-619 / 100-Days-of-YARA-2024
  ☆19Updated last year
• eremit4 / cs-discovery
  Detecting Cobalt Strike Team Servers on targets through traffic telemetry.
  ☆22Updated last year
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• NVISOsecurity / nviso-cti
  ☆44Updated last month
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆114Updated 3 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆35Updated 2 months ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated 2 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 7 months ago
• DODC / turncoat
  ☆42Updated 5 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆60Updated 9 months ago
• EyupErgin / HuntRisePro
  Specific C2 Detection Tool Written To Detect C2 Servers From RisePro Stealer Malware.
  ☆12Updated last year
• ninoseki / kibune
  A Sigma based detection pipeline
  ☆12Updated last year
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆105Updated 3 years ago
• svdwi / BlueBox
  BlueBox Malware analysis Box and Cyber threat intelligence.
  ☆43Updated 3 years ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• J4FSec / In0ri
  Website defacement attack detection with deep learning
  ☆61Updated 7 months ago
• dtrizna / SysmonRNN
  All necessary code in order to feed Sysmon data into Recurrent Neural Network
  ☆17Updated 5 years ago