giorgioditizio / APTs-databaseLinks
A repository with data about APTs
☆13Updated 3 years ago
Alternatives and similar repositories for APTs-database
Users that are interested in APTs-database are comparing it to the libraries listed below
Sorting:
- Extensible framework for analyzing publicly available information about vulnerabilities☆128Updated this week
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆33Updated last month
- A collection of tips for using MISP.☆75Updated last year
- BlackBerry Threat Research & Intelligence☆99Updated 2 years ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆133Updated 3 years ago
- Harvest Linux forensic data for operational triage of an event.☆51Updated 2 weeks ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆106Updated last year
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆69Updated last year
- Augmentation to Machine Readable CTI☆37Updated 3 months ago
- A web API for various cyber threat intelligence frameworks, including MITRE ATT&CK, CWE, ATLAS...☆17Updated last week
- ☆100Updated last week
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆50Updated 5 months ago
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆40Updated 7 months ago
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆35Updated 3 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆75Updated last week
- Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…☆127Updated 8 months ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆59Updated 3 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆125Updated 2 years ago
- Open Threat Hunting Framework☆120Updated 2 years ago
- Resources for SANS CTI Summit 2021 presentation☆104Updated 2 years ago
- ☆108Updated last year
- ☆44Updated 5 months ago
- Data visualization for blue teams☆127Updated 2 years ago
- ☆70Updated 4 years ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆89Updated last month
- Detection Engineering with YARA☆87Updated last year
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆168Updated 2 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆72Updated last month
- Memory Forensic System on Cloud☆92Updated last year