kcyerrid / CTILinks
Cyber Threat Intelligence
☆74Updated 2 months ago
Alternatives and similar repositories for CTI
Users that are interested in CTI are comparing it to the libraries listed below
Sorting:
- A preconfigured Velociraptor triage collector☆74Updated last month
- Sigma detection rules for hunting with the threathunting-keywords project☆58Updated 11 months ago
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365☆23Updated last year
- ☆102Updated 2 months ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆127Updated 2 years ago
- Azure function to insert MISP data in to Azure Sentinel☆34Updated 3 years ago
- ☆22Updated 3 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Updated last year
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆42Updated 3 weeks ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆115Updated last year
- Remote access and Antivirus Logging Database☆45Updated last year
- Intel Retrieval Augmented Generation (RAG) Utilities☆91Updated 2 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated last year
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆69Updated last year
- my MSTICpy practice and custom tools repository☆11Updated 9 months ago
- ☆35Updated last year
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Windows event log anomaly detection powered by ATPA technologies☆26Updated 3 years ago
- User Feedback Space of #MitreAssistant☆38Updated 2 years ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆51Updated 9 months ago
- ☆22Updated last year
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆55Updated last week
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Updated 2 years ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆91Updated 3 months ago
- Turn any blog into structured threat intelligence.☆51Updated last week
- Cyber Underground General Intelligence Requirements☆97Updated 2 years ago
- TIM is a Kusto investigation platform that enables a user to quickly pivot between data sources; annotate their findings; and promotes co…☆23Updated last year
- A collection of tips for using MISP.☆75Updated last year
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆34Updated 3 months ago
- The backend server handling API requests and task management☆55Updated last week