Alternatives and similar repositories for threat-team

Users that are interested in threat-team are comparing it to the libraries listed below

• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆34Updated 8 months ago
• Censys-Research / censeye
  ☆146Updated 2 months ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆99Updated 4 months ago
• ThreatMon / ThreatMon-Daily-C2-Feeds
  IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
  ☆67Updated last year
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated last year
• n0jam / gcp-ctf-workshop
  ☆41Updated 8 months ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• korniko98 / pivot-atlas
  ☆93Updated 2 months ago
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆68Updated last month
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆64Updated 2 years ago
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆85Updated 5 months ago
• silascutler / awesome-docker-malware-analysis
  Repository of tools and resources for analyzing Docker containers
  ☆66Updated last year
• FoxIO-LLC / ja4tscan
  JA4TScan is an active TCP server fingerprinting tool.
  ☆85Updated 11 months ago
• Cyb3rWard0g / IntelRAGU
  Intel Retrieval Augmented Generation (RAG) Utilities
  ☆90Updated last year
• BrsDincer / Cyber_Security_Malware_APT_Simulation
  All the principles of the AI modular structure that generates malicious code fragments sold on the dark web
  ☆70Updated last year
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆58Updated last week
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated last week
• Escape-Technologies / API-Threat-Matrix
  A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.
  ☆43Updated 10 months ago
• BushidoUK / MITRE-Mappings
  A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.
  ☆26Updated 4 months ago
• fr0gger / nova-framework
  NOVA: The Prompt Pattern Matching
  ☆144Updated last week
• muchdogesec / obstracts
  Turn any blog into structured threat intelligence.
  ☆34Updated this week
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆65Updated last year
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆115Updated 10 months ago
• fkie-cad / bountyhunter
  A Caldera plugin for the emulation of complete, realistic cyberattack chains.
  ☆54Updated 4 months ago
• EC-DIGIT-CSIRC / openai-cti-summarizer
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆55Updated 3 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 8 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆84Updated 2 months ago
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆77Updated last month
• SygniaLabs / Mirage
  ☆73Updated 4 months ago