Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports
☆164May 7, 2026Updated last week
Alternatives and similar repositories for ThreatIntel-Reports
Users that are interested in ThreatIntel-Reports are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Living of the Land of Free SaaS☆75Mar 22, 2026Updated last month
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆203Dec 20, 2024Updated last year
- yara detection rules for hunting with the threathunting-keywords project☆162May 11, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆655Aug 4, 2025Updated 9 months ago
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆324Apr 22, 2026Updated 3 weeks ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- ☆16May 3, 2024Updated 2 years ago
- Collect Windows telemetry for Maldev☆477Updated this week
- Sigma detection rules for hunting with the threathunting-keywords project☆60Mar 2, 2025Updated last year
- Awesome Security lists for SOC/CERT/CTI☆1,449Updated this week
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Apr 27, 2024Updated 2 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆282Dec 20, 2025Updated 5 months ago
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆76Feb 9, 2024Updated 2 years ago
- Kibana app for RedELK☆18Mar 19, 2023Updated 3 years ago
- Indicators of compromise☆18May 13, 2026Updated last week
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- rust port of pspy with support for process monitoring over dbus☆37Jan 4, 2026Updated 4 months ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆119Oct 29, 2024Updated last year
- Unix Process hollowing in rust☆22Dec 16, 2024Updated last year
- A COFF Loader written in Rust☆141Dec 1, 2025Updated 5 months ago
- A Pentesters Confluence Keyword Scanner☆17Dec 3, 2024Updated last year
- A repository to store community malware research notes and findings.☆15Feb 13, 2026Updated 3 months ago
- This is the Git repository for the Modern Red Teaming workshop given at SINCON2024.☆13May 23, 2024Updated last year
- A resource containing all the tools each ransomware gangs uses☆1,367May 11, 2026Updated last week
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆26Feb 29, 2024Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆52Mar 30, 2026Updated last month
- Generic PE loader for fast prototyping evasion techniques☆246Jul 2, 2024Updated last year
- Abusing Azure services over C2☆372Jan 20, 2026Updated 4 months ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆194Updated this week
- Interesting APT Report Collection And Some Special IOCs☆2,986May 9, 2026Updated last week
- A home for detection content developed by the delivr.to team☆73Aug 10, 2025Updated 9 months ago
- A curated list of Awesome Threat Intelligence Blogs☆542Apr 27, 2026Updated 3 weeks ago
- Create malware knowledge graphs from analysis reports☆40Dec 6, 2023Updated 2 years ago
- a tiny program to consume from ETW providers for research☆56Jan 4, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆835Updated this week
- Living off the False Positive!☆42Apr 3, 2026Updated last month
- Abuse leaked token handles.☆136Dec 14, 2023Updated 2 years ago
- Shellcode loader that executes embedded Lua from Rust.☆125Dec 16, 2024Updated last year
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆28Jun 14, 2024Updated last year
- Deobfuscation of XorStringsNet☆13Nov 5, 2024Updated last year
- A collection of CVEs weaponized by ransomware operators☆138May 9, 2026Updated last week