Alternatives and similar repositories for CTI

Users that are interested in CTI are comparing it to the libraries listed below

• NUKIB / misp
  Docker image for MISP
  ☆135Updated 2 weeks ago
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆238Updated this week
• MISP / misp-docker
  A production ready Dockered MISP
  ☆298Updated this week
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆238Updated last week
• JMousqueton / ransomware.live
  🏴‍☠️💰 Another Ransomware gang tracker
  ☆269Updated 3 months ago
• xsa / infosec-events
  List of past and future infosec related events.
  ☆165Updated this week
• magicsword-io / LOLRMM
  LotL RMM
  ☆264Updated 2 weeks ago
• Bert-JanP / Open-Source-Threat-Intel-Feeds
  This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…
  ☆729Updated 10 months ago
• vulnerability-lookup / vulnerability-lookup
  Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…
  ☆415Updated this week
• thalesgroup-cert / suspicious
  AI-powered phishing & threat-analysis platform to automatically inspect, classify, and report suspicious emails, files, URLs, IPs, and ha…
  ☆68Updated this week
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆274Updated 8 months ago
• PaloAltoNetworks / Unit42-timely-threat-intel
  A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…
  ☆424Updated this week
• cert-advens / IRM
  ☆164Updated last month
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆381Updated this week
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆291Updated last week
• keyboardcrunch / SentinelOne-Query-Navigator
  Web based S1 query navigator for one-click threat hunting
  ☆24Updated 4 years ago
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆304Updated last week
• infobloxopen / threat-intelligence
  ☆101Updated 2 weeks ago
• madirish / ossocdocs
  Open Source Security Operations Center Documentation
  ☆202Updated 5 months ago
• The-Shadowserver-Foundation / api_utils
  Sample programs to access the API
  ☆97Updated last week
• cert-orangecyberdefense / ransomware_map
  Map tracking ransomware, by OCD World Watch team
  ☆479Updated 9 months ago
• guardsight / gsvsoc_cirt-playbook-battle-cards
  Cyber Incident Response Team Playbook Battle Cards
  ☆425Updated last year
• Yamato-Security / EnableWindowsLogSettings
  Documentation and scripts to properly enable Windows event logs.
  ☆646Updated 2 months ago
• 3CORESec / testmynids.org
  A website and framework for testing NIDS detection
  ☆305Updated 5 months ago
• fox-it / dissect
  Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…
  ☆1,056Updated 2 weeks ago
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆434Updated this week
• MISP / misp-playbooks
  MISP Playbooks
  ☆219Updated 2 months ago
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆298Updated 10 months ago
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆134Updated 4 years ago
• muchdogesec / awesome_threat_intel_blogs
  A curated list of Awesome Threat Intelligence Blogs
  ☆470Updated 2 weeks ago