Alternatives and similar repositories for CTI

Users that are interested in CTI are comparing it to the libraries listed below

• NUKIB / misp
  Docker image for MISP
  ☆134Updated last month
• MISP / misp-docker
  A production ready Dockered MISP
  ☆280Updated this week
• Cisco-Talos / IOCs
  Indicators of Compromise
  ☆219Updated last month
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆376Updated last week
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆229Updated last week
• Bert-JanP / Open-Source-Threat-Intel-Feeds
  This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…
  ☆707Updated 7 months ago
• JMousqueton / ransomware.live
  🏴‍☠️💰 Another Ransomware gang tracker
  ☆256Updated last week
• center-for-threat-informed-defense / cti-blueprints
  CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…
  ☆265Updated 6 months ago
• magicsword-io / LOLRMM
  LotL RMM
  ☆240Updated 2 weeks ago
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆122Updated this week
• PaloAltoNetworks / Unit42-timely-threat-intel
  A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…
  ☆369Updated this week
• OpenCTI-Platform / connectors
  OpenCTI Connectors
  ☆476Updated this week
• opencybersecurityalliance / cacao-roaster
  A web application for generating, parsing and validating, manipulating, visualizing and executing CACAO v2.0 playbooks.
  ☆35Updated 3 weeks ago
• guardsight / gsvsoc_cirt-playbook-battle-cards
  Cyber Incident Response Team Playbook Battle Cards
  ☆415Updated last year
• MISP / misp-playbooks
  MISP Playbooks
  ☆208Updated 3 months ago
• ninoseki / eml_analyzer
  An application to analyze the EML file
  ☆294Updated last week
• volexity / threat-intel
  Signatures and IoCs from public Volexity blog posts.
  ☆356Updated last week
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆274Updated 2 weeks ago
• madirish / ossocdocs
  Open Source Security Operations Center Documentation
  ☆194Updated 2 months ago
• vulnerability-lookup / vulnerability-lookup
  Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…
  ☆369Updated this week
• cert-orangecyberdefense / ransomware_map
  Map tracking ransomware, by OCD World Watch team
  ☆471Updated 6 months ago
• keyboardcrunch / SentinelOne-Query-Navigator
  Web based S1 query navigator for one-click threat hunting
  ☆23Updated 4 years ago
• BushidoUK / CTI-Analyst-Challenge
  An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
  ☆199Updated last year
• ail-project / lacus
  Lacus is a capturing system using playwright, as a web service.
  ☆81Updated this week
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆292Updated 8 months ago
• 3CORESec / testmynids.org
  A website and framework for testing NIDS detection
  ☆285Updated 2 months ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆106Updated this week
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆268Updated last month
• sublime-security / sublime-rules
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆324Updated this week
• infobloxopen / threat-intelligence
  ☆92Updated this week