Alternatives and similar repositories for threat-research

Users that are interested in threat-research are comparing it to the libraries listed below

• facebook / Conversion-Leads-Salesforce-APEX

  View on GitHub
  Setup Conversion Leads API integration using Salesforce APEX triggers on Lead objects
  ☆19Mar 22, 2023Updated 2 years ago
• hpthreatresearch / iocs

  View on GitHub
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆29Apr 10, 2024Updated last year
• HarfangLab / iocs

  View on GitHub
  Indicators of compromise
  ☆17Jan 29, 2026Updated 2 weeks ago
• facebook / ristretto255-js

  View on GitHub
  Javascript implementation of the Ristretto255 group operations, built on top of the popular TweetNaCl.js crypto library
  ☆33Dec 13, 2023Updated 2 years ago
• ThreatLabz / iocs

  View on GitHub
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆79Jan 26, 2026Updated 2 weeks ago
• github / codeql-variant-analysis-action

  View on GitHub
  ☆22Feb 4, 2026Updated last week
• CooperShield / rustache_injector

  View on GitHub
  A rust based DLL injection project
  ☆31Sep 18, 2022Updated 3 years ago
• rkovar / sunburstlookups

  View on GitHub
  Quick lookup files for SUNBURST Backdoor
  ☆12Dec 15, 2020Updated 5 years ago
• openaps / openxshareble

  View on GitHub
  openaps driver for Dexcom G4 with Share BLE
  ☆11Sep 13, 2017Updated 8 years ago
• gcve-eu / gcve

  View on GitHub
  A Python client for the Global CVE Allocation System.
  ☆17Jan 31, 2026Updated 2 weeks ago
• fabriciojoc / malware-machinelearning

  View on GitHub
  Malware - Machine Learning
  ☆11Mar 24, 2018Updated 7 years ago
• CybercentreCanada / configextractor-py

  View on GitHub
  Python Library for ConfigExtractor
  ☆14Feb 4, 2026Updated last week
• facebook / hyperion

  View on GitHub
  This project enabled intercepting and virtualizing the browser API
  ☆45Updated this week
• reecdeep / HiveV5_keystream_decryptor

  View on GitHub
  bad stuffs by bad guys
  ☆49Jul 28, 2022Updated 3 years ago
• facebook / sapp

  View on GitHub
  Post Processor for Facebook Static Analysis Tools.
  ☆140Updated this week
• cedowens / macOS-browserhist-parser

  View on GitHub
  Swift code to parse the quarantine history database, Chrome history database, Safari history database, and Firefox history database on ma…
  ☆15Dec 3, 2020Updated 5 years ago
• captainGeech42 / synapse-sinkdb

  View on GitHub
  Synapse Rapid Power-up for SinkDB
  ☆11Jun 24, 2025Updated 7 months ago
• microsoft / azure-data-manager-for-energy-experience-lab

  View on GitHub
  Experience Lab is a set of utilities that assist in creating instances of Microsoft Azure Data Manager for Energy, performing data loads,…
  ☆16Oct 2, 2024Updated last year
• 0xcrypto / takeover

  View on GitHub
  A script to test for subdomain takeovers from a list of domains
  ☆12Feb 18, 2023Updated 2 years ago
• Permiso-io-tools / DetentionDodger

  View on GitHub
  ☆18Jan 31, 2025Updated last year
• muchdogesec / sigma2stix

  View on GitHub
  [ARCHIVED -- USE TXT2DETECTION] A command line tool that converts Sigma Rules into STIX 2.1 Objects.
  ☆12Jan 13, 2025Updated last year
• facebook / OpenBIC

  View on GitHub
  BICs (Bridge IC) are standalone devices deployed within a Data Center that enable monitoring a multi-host system using a single BMC devic…
  ☆63Updated this week
• lacework / lacework-labs

  View on GitHub
  ☆18Dec 6, 2022Updated 3 years ago
• santidediego / MaxRecon

  View on GitHub
  Suite for Information gathering
  ☆12Jul 2, 2018Updated 7 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist

  View on GitHub
  ☆20May 30, 2025Updated 8 months ago
• frederikme / sandboxed

  View on GitHub
  Virtual machine detection. This is done by looking at registry keys, processes, files, internet access and specs such as disk storage, RA…
  ☆18Oct 8, 2021Updated 4 years ago
• BitsOfBinary / yarabuilder

  View on GitHub
  Python 3 library to build YARA rules.
  ☆13Oct 24, 2021Updated 4 years ago
• kyle-phillips / adversarial-tools

  View on GitHub
  A collection of tools adversaries commonly use in an attack.
  ☆14Nov 23, 2024Updated last year
• github / KustoSchemaTools

  View on GitHub
  This repository contains C# code to synchronize database schemas from Azure Data Explorer (Kusto) to yaml files and back.
  ☆16Jan 19, 2026Updated 3 weeks ago
• censys-workshop / threatfox-censys

  View on GitHub
  Threatfox Censys is a tool to query Censys Search for IP addresses and domains and then parses the JSON and submits the results to Threat…
  ☆36Jan 8, 2026Updated last month
• facebook / buck2-prelude

  View on GitHub
  Prelude for the Buck2 project
  ☆61Updated this week
• opencybersecurityalliance / oca-iob

  View on GitHub
  Augmentation to Machine Readable CTI
  ☆37Sep 9, 2025Updated 5 months ago
• BushidoUK / Cybercrime-Police-Raids

  View on GitHub
  Collection of videos of Raids on Cybercriminals
  ☆21Mar 19, 2025Updated 10 months ago
• Sh3llyR / statiStrings

  View on GitHub
  YARA Rule Strings Statistics Calculator and Malware Research Helper
  ☆14Jul 24, 2021Updated 4 years ago
• its-a-feature / loginItemManipulator

  View on GitHub
  ☆15May 26, 2021Updated 4 years ago
• facebook / between-meals

  View on GitHub
  A library to provide calculations between Chef diffs.
  ☆57Feb 6, 2026Updated last week
• password123456 / CertVerify

  View on GitHub
  A scanner that files with compromised or untrusted code signing certificates written in python.
  ☆65Sep 6, 2023Updated 2 years ago
• LaurieWired / beautifying_android_native_code

  View on GitHub
  This repo contains the APK to follow along with my "Beautifying Android Native Code" Video on Youtube
  ☆12May 31, 2023Updated 2 years ago
• DISARMFoundation / DISARMframeworks

  View on GitHub
  Master copies of the DISARM frameworks, with generated files to help you explore the data
  ☆261Jan 29, 2026Updated 2 weeks ago