Alternatives and similar repositories for threat-research

Users that are interested in threat-research are comparing it to the libraries listed below

• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆161Updated last week
• phish-report / IOK
  IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tactics
  ☆190Updated 4 months ago
• openphish / pyopdb
  ☆74Updated 4 years ago
• davidonzo / Threat-Intel
  Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
  ☆159Updated 10 months ago
• SEKOIA-IO / Community
  Welcome to the SEKOIA.IO Community repository!
  ☆163Updated last month
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆71Updated last year
• t4d / PhishingKit-Yara-Rules
  Repository of Yara rules dedicated to Phishing Kits Zip files
  ☆227Updated last week
• typosquatter / ail-typo-squatting
  Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems.
  ☆96Updated 4 months ago
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆76Updated last year
• blacklotuslabs / IOCs
  IOCs published by Black Lotus Labs
  ☆122Updated 3 months ago
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆116Updated 2 weeks ago
• cablej / ransomwhere
  The open ransomware payment tracker
  ☆98Updated this week
• cocaman / malware-bazaar
  Python scripts for Malware Bazaar
  ☆154Updated last year
• FIRSTdotorg / Vuln4Cast
  A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.
  ☆42Updated 2 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆89Updated 4 months ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated last month
• google / threat-team
  IOCs from Google Threat Intelligence
  ☆33Updated 3 months ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated last year
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆48Updated this week
• oasis-open / cti-stix-validator
  OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices
  ☆55Updated last month
• FIRSTdotorg / global-irt
  Global IRT (Incident Response Team) is a project to describe common IRT and abuse contact information
  ☆72Updated last year
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆55Updated this week
• qeeqbox / mitre-visualizer
  🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)
  ☆96Updated 3 years ago
• alexandrosmagos / dyn-dns-list
  This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposes…
  ☆105Updated this week
• OpenCTI-Platform / client-python
  OpenCTI Python Client
  ☆143Updated this week
• traut / stixview
  STIX2 graph visualisation library in JS
  ☆90Updated 2 months ago
• malpedia / feedback
  Public Issue tracker to gather feedback for and allow discussions around Malpedia
  ☆35Updated 3 years ago
• ninoseki / abuse_whois
  Yet another way to find where to report an abuse
  ☆32Updated 7 months ago
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆217Updated 2 weeks ago
• VirusTotal / vt-augment
  The VT Augment widget is an official, compliant and recommended way of integrating VirusTotal data in third-party applications.
  ☆36Updated last year