Alternatives and similar repositories for threat-team

Users that are interested in threat-team are comparing it to the libraries listed below

• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆34Updated 8 months ago
• Censys-Research / censeye
  ☆146Updated 2 months ago
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆85Updated 2 weeks ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆53Updated 8 months ago
• ThreatMon / ThreatMon-Daily-C2-Feeds
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆67Updated last year
• korniko98 / pivot-atlas
  ☆94Updated 2 weeks ago
• silascutler / awesome-docker-malware-analysis
  Repository of tools and resources for analyzing Docker containers
  ☆67Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated 2 years ago
• crcresearch / DWData
  Data from Dark Web Marketplace scraping - Be careful
  ☆40Updated 9 months ago
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆69Updated 2 months ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated 10 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆65Updated 3 years ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆137Updated last year
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆58Updated last month
• fkie-cad / bountyhunter
  A Caldera plugin for the emulation of complete, realistic cyberattack chains.
  ☆56Updated 5 months ago
• n0jam / gcp-ctf-workshop
  ☆41Updated 8 months ago
• CyberSecurityUP / Adversary-Emulation-Guide
  ☆21Updated 2 years ago
• EC-DIGIT-CSIRC / openai-cti-summarizer
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆56Updated 4 months ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated last month
• SpecterOps / GitHound
  ☆66Updated last week
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆37Updated 11 months ago
• nccgroup / MetadataPlus
  A tool to use novel locations to extract metadata from Office documents.
  ☆63Updated 2 years ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆26Updated 5 months ago
• typosquatter / ail-typo-squatting
  Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems.
  ☆96Updated 3 months ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆70Updated 2 weeks ago
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• pancak3lullz / SECurityTr8Ker
  SECurityTr8Ker monitors the SEC's RSS feed for 8-K filings with cybersecurity incident disclosures.
  ☆85Updated 2 months ago
• Escape-Technologies / API-Threat-Matrix
  A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
  ☆43Updated 11 months ago
• notdls / known-breaches
  Daily updates from leaked data search engines, aggregators and similar services.
  ☆109Updated last week