Alternatives and similar repositories for Threat-Intelligence-Data

Users that are interested in Threat-Intelligence-Data are comparing it to the libraries listed below

• phainlen / DNS-Hunting
  Use DNS to hunt for threats including DGAs
  ☆15Updated 9 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 3 years ago
• sans-blue-team / sec455-wiki
  ☆30Updated 6 years ago
• gr4ym4ntx / attackintel
  A python script to query the MITRE ATT&CK API for tactics, techniques, mitigations, & detection methods for specific threat groups.
  ☆66Updated 6 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• weslambert / securityonion-strelka
  ☆13Updated 5 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• bfuzzy / ThreatHunter-Playbook
  A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
  ☆14Updated 6 years ago
• securycore / ThreatHunting
  Powershell collection designed to assist in Threat Hunting Windows systems.
  ☆27Updated 7 years ago
• MISP / misp-vagrant
  Deploy MISP Project software with Vagrant.
  ☆43Updated 4 years ago
• Kathayra / threathuntingmaturitymodel
  Build your own threat hunting maturity model
  ☆11Updated 7 years ago
• fl0x2208 / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 7 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• MISP / threat-actor-intelligence-server
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆48Updated last year
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Updated 4 years ago
• inishantgrover / Shodmon
  The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided
  ☆33Updated 3 years ago
• n4xh4ck5 / Th4sD0m
  Tool to identify all domains contained in an IP anonymously
  ☆15Updated 7 years ago
• swisscom / splunk-addon-powershell
  Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
  ☆17Updated 4 years ago
• porterhau5 / BloodHound
  Six Degrees of Domain Admin
  ☆15Updated 7 years ago
• 0x4D31 / hassh-utils
  hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…
  ☆57Updated 7 months ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 9 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• sk4la / plast
  Modular command-line threat hunting tool & framework.
  ☆17Updated 4 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• securethelogs / Bluechecker
  Audit Powershell and search from known keywords in history #Blueteam
  ☆25Updated 5 years ago
• gburkle / Stalker
  Threat Intel and Incident Reponse
  ☆10Updated 6 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆22Updated 6 years ago