☆122Apr 23, 2026Updated 2 weeks ago
Alternatives and similar repositories for threat-intelligence
Users that are interested in threat-intelligence are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ioc2rpz is a place where threat intelligence meets DNS.☆113Apr 29, 2026Updated last week
- ☆74Apr 27, 2026Updated last week
- Automated threat intel feed parsing and consolidation💻👾🤖☆41Updated this week
- Splunk Add-on for Microsoft Azure☆12Dec 15, 2025Updated 4 months ago
- This repository contains various threat hunting tools written in Python and is documented in the series Python Threat Hunting Tools which…☆19Nov 16, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 🦉🔬A small PowerShell tool for finding information quickly on malicious IPs or FQDNs. Powershell threat hunting.☆11Jan 9, 2020Updated 6 years ago
- Indicators of compromise☆17Jan 29, 2026Updated 3 months ago
- Splunk csv to KVStore ES Threat Intel☆11Jul 11, 2016Updated 9 years ago
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 5 months ago
- This repository contains files from AppGate / Immunity Malware Analysis Team.☆21Oct 19, 2021Updated 4 years ago
- AIL project training materials☆39Apr 21, 2026Updated 2 weeks ago
- Pure Python netflow and DNS correlation, with reusable Frame Streams, DnsTap and Protobuf implementations☆17Aug 30, 2025Updated 8 months ago
- A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…☆513Updated this week
- ☆38Apr 1, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Newly Registered Domains (NRD) lists generated from WhoisDS.com free database — daily domain lists for security and threat analysis.☆42Updated this week
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆69Apr 29, 2024Updated 2 years ago
- This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.☆48Feb 27, 2026Updated 2 months ago
- Threat Modeling with ATT&CK defines how to integreate MITRE ATT&CK® into your organization’s existing threat modeling methodology.☆14May 28, 2025Updated 11 months ago
- Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS☆163Oct 18, 2024Updated last year
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆37Oct 21, 2025Updated 6 months ago
- ☆10Sep 12, 2024Updated last year
- Information about Progress MoveIT CVE☆11Jun 16, 2023Updated 2 years ago
- https://academy.tcm-sec.com/☆15Aug 19, 2025Updated 8 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Wazuh extension looking up alert data against indicators in OpenCTI threat intel☆21Feb 4, 2024Updated 2 years ago
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- We took PersistenceSniper, merged it with Python, and misspelled it on purpose. Meet PyrsistenceSniper.☆82Mar 30, 2026Updated last month
- ☆16Mar 19, 2026Updated last month
- A project designed to make the operationalization of open-source cyber threat intelligence more efficient.☆18Updated this week
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆266Nov 21, 2025Updated 5 months ago
- Getting started with Decisions-Disruptions☆11Jan 28, 2020Updated 6 years ago
- A Python script to crosspost Ghost articles to Medium. Written for Zapier.☆11May 22, 2020Updated 5 years ago
- Tools for hunting security threats☆12Feb 4, 2020Updated 6 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆885Updated this week
- Feed of phish-domains found by Validin Threat Intelligince Platform☆36May 1, 2026Updated last week
- Threat Simulator for Enterprise Networks☆14May 14, 2022Updated 3 years ago
- Stupid Simple Detection Testing☆13Mar 7, 2024Updated 2 years ago
- ☆21Jan 20, 2023Updated 3 years ago
- ☆15May 22, 2023Updated 2 years ago
- A script to assist in processing forensic RAM captures for malware triage☆26Feb 4, 2021Updated 5 years ago