Alternatives and similar repositories for sans-cti-summit-2025

Users that are interested in sans-cti-summit-2025 are comparing it to the libraries listed below

• dfirence / ma-insights-xe
  User Feedback Space of #MitreAssistant
  ☆37Updated 2 years ago
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆44Updated 4 years ago
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆122Updated last year
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 8 months ago
• JPMinty / Detection_Engineering_Signatures
  YARA, SIGMA, SNORT Rules based on Malware Analysis
  ☆16Updated last month
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆94Updated 7 months ago
• curated-intel / Threat-Actor-Profile-Guide
  The Threat Actor Profile Guide for CTI Analysts
  ☆107Updated last year
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆41Updated 3 weeks ago
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆34Updated last month
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆92Updated last year
• keydet89 / Events-Ripper
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆85Updated 3 months ago
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆58Updated 3 years ago
• 00010111 / smbtimeline
  ☆35Updated 7 months ago
• korniko98 / pivot-atlas
  ☆92Updated 3 weeks ago
• CTI-Driven / Advanced-Threat-Hunting-Ransomware-Groups-Affiliates
  Advanced Threat Hunting: Ransomware Group
  ☆20Updated 5 months ago
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆42Updated last year
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆60Updated 8 months ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆98Updated last year
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆51Updated last year
• svch0stz / velociraptor-detections
  ☆21Updated 2 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 3 months ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• Cyb3rWard0g / IntelRAGU
  Intel Retrieval Augmented Generation (RAG) Utilities
  ☆90Updated last year
• cudeso / proof-value-cti
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆51Updated 7 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆81Updated 2 weeks ago
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆67Updated last year
• tropChaud / Categorized-Adversary-TTPs
  Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…
  ☆54Updated 2 years ago
• mgreen27 / mcp-velociraptor
  VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.
  ☆28Updated last week
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆46Updated last week