Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports
☆165Jun 4, 2026Updated this week
Alternatives and similar repositories for ThreatIntel-Reports
Users that are interested in ThreatIntel-Reports are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Living of the Land of Free SaaS☆76Mar 22, 2026Updated 2 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆203Dec 20, 2024Updated last year
- yara detection rules for hunting with the threathunting-keywords project☆164May 11, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆658Aug 4, 2025Updated 10 months ago
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆329Apr 22, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆16May 3, 2024Updated 2 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆60Mar 2, 2025Updated last year
- Collect Windows telemetry for Maldev☆485May 20, 2026Updated 2 weeks ago
- Awesome Security lists for SOC/CERT/CTI☆1,498Updated this week
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Apr 27, 2024Updated 2 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆284Dec 20, 2025Updated 5 months ago
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆76Feb 9, 2024Updated 2 years ago
- Kibana app for RedELK☆18Mar 19, 2023Updated 3 years ago
- Indicators of compromise☆19May 18, 2026Updated 3 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- rust port of pspy with support for process monitoring over dbus☆38Jan 4, 2026Updated 5 months ago
- Unix Process hollowing in rust☆22Dec 16, 2024Updated last year
- A COFF Loader written in Rust☆141Dec 1, 2025Updated 6 months ago
- A Pentesters Confluence Keyword Scanner☆19Dec 3, 2024Updated last year
- A repository to store community malware research notes and findings.☆16Feb 13, 2026Updated 3 months ago
- This is the Git repository for the Modern Red Teaming workshop given at SINCON2024.☆13May 23, 2024Updated 2 years ago
- A resource containing all the tools each ransomware gangs uses☆1,385May 26, 2026Updated 2 weeks ago
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆26Feb 29, 2024Updated 2 years ago
- ☆52Mar 30, 2026Updated 2 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Generic PE loader for fast prototyping evasion techniques☆246Jul 2, 2024Updated last year
- Abusing Azure services over C2☆372Jan 20, 2026Updated 4 months ago
- Interesting APT Report Collection And Some Special IOCs☆3,004Jun 3, 2026Updated last week
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆203Jun 3, 2026Updated last week
- A home for detection content developed by the delivr.to team☆75Aug 10, 2025Updated 9 months ago
- A curated list of Awesome Threat Intelligence Blogs☆546Apr 27, 2026Updated last month
- a tiny program to consume from ETW providers for research☆55Jan 4, 2025Updated last year
- Create malware knowledge graphs from analysis reports☆40Dec 6, 2023Updated 2 years ago
- Living off the False Positive!☆42Apr 3, 2026Updated 2 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆845Jun 3, 2026Updated last week
- Abuse leaked token handles.☆136Dec 14, 2023Updated 2 years ago
- Shellcode loader that executes embedded Lua from Rust.☆125Dec 16, 2024Updated last year
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆28Jun 14, 2024Updated last year
- Deobfuscation of XorStringsNet☆13Nov 5, 2024Updated last year
- A collection of CVEs weaponized by ransomware operators☆140May 25, 2026Updated 2 weeks ago
- Example code samples from our ScriptBlock Smuggling Blog post☆94Jun 18, 2024Updated last year