Alternatives and similar repositories for threat-research

Users that are interested in threat-research are comparing it to the libraries listed below

• openphish / pyopdb
  ☆74Updated 4 years ago
• davidonzo / Threat-Intel
  Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS
  ☆160Updated 11 months ago
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆161Updated this week
• mvt-project / mvt-indicators
  Index and collection of MVT compatibile indicators of compromise.
  ☆99Updated last month
• FIRSTdotorg / global-irt
  Global IRT (Incident Response Team) is a project to describe common IRT and abuse contact information
  ☆73Updated last year
• FIRSTdotorg / Vuln4Cast
  A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.
  ☆42Updated 3 months ago
• securityscorecard / SSC-Threat-Intel-IoCs
  Public access for readers of our technical blogs posts and reports can access IoCs and other data
  ☆72Updated last year
• blacklotuslabs / IOCs
  IOCs published by Black Lotus Labs
  ☆122Updated last week
• t4d / PhishingKit-Yara-Rules
  Repository of Yara rules dedicated to Phishing Kits Zip files
  ☆230Updated 2 weeks ago
• cablej / ransomwhere
  The open ransomware payment tracker
  ☆98Updated 3 weeks ago
• malpedia / feedback
  Public Issue tracker to gather feedback for and allow discussions around Malpedia
  ☆35Updated 3 years ago
• phish-report / IOK
  IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tactics
  ☆190Updated 4 months ago
• SEKOIA-IO / Community
  Welcome to the SEKOIA.IO Community repository!
  ☆164Updated 2 months ago
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆71Updated last year
• typosquatter / ail-typo-squatting
  Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems.
  ☆96Updated 4 months ago
• AssoEchap / stalkerware-indicators
  Indicators of stalkerware apps
  ☆321Updated last month
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆116Updated last year
• securitywithoutborders / guide-to-quick-forensics
  ☆70Updated 5 years ago
• VirusTotal / vt-augment
  The VT Augment widget is an official, compliant and recommended way of integrating VirusTotal data in third-party applications.
  ☆36Updated last year
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 3 months ago
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆69Updated this week
• alexandrosmagos / dyn-dns-list
  This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposes…
  ☆105Updated this week
• cocaman / malware-bazaar
  Python scripts for Malware Bazaar
  ☆154Updated last year
• CronUp / Malware-IOCs
  ☆96Updated 4 months ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆48Updated this week
• ninoseki / abuse_whois
  Yet another way to find where to report an abuse
  ☆32Updated 7 months ago
• OpenCTI-Platform / client-python
  OpenCTI Python Client
  ☆143Updated this week
• google / osdfir-infrastructure
  Helm charts for running open source digital forensic tools in Kubernetes
  ☆117Updated this week
• oasis-open / cti-stix-generator
  OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…
  ☆42Updated last year
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆76Updated last year