Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports
☆160Mar 16, 2026Updated this week
Alternatives and similar repositories for ThreatIntel-Reports
Users that are interested in ThreatIntel-Reports are comparing it to the libraries listed below
Sorting:
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆195Dec 20, 2024Updated last year
- yara detection rules for hunting with the threathunting-keywords project☆157May 11, 2025Updated 10 months ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆648Aug 4, 2025Updated 7 months ago
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆263Jan 29, 2026Updated last month
- Sigma detection rules for hunting with the threathunting-keywords project☆58Mar 2, 2025Updated last year
- Collect Windows telemetry for Maldev☆464Jan 30, 2026Updated last month
- Awesome Security lists for SOC/CERT/CTI☆1,277Updated this week
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆83Apr 27, 2024Updated last year
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆279Dec 20, 2025Updated 3 months ago
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆75Feb 9, 2024Updated 2 years ago
- Kibana app for RedELK☆18Mar 19, 2023Updated 3 years ago
- Indicators of compromise☆17Jan 29, 2026Updated last month
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆117Oct 29, 2024Updated last year
- rust port of pspy with support for process monitoring over dbus☆36Jan 4, 2026Updated 2 months ago
- Unix Process hollowing in rust☆22Dec 16, 2024Updated last year
- A COFF Loader written in Rust☆140Dec 1, 2025Updated 3 months ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆145Updated this week
- A Pentesters Confluence Keyword Scanner☆17Dec 3, 2024Updated last year
- A repository to store community malware research notes and findings.☆15Feb 13, 2026Updated last month
- A resource containing all the tools each ransomware gangs uses☆1,329Updated this week
- This is the Git repository for the Modern Red Teaming workshop given at SINCON2024.☆13May 23, 2024Updated last year
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆26Feb 29, 2024Updated 2 years ago
- ☆53Sep 23, 2025Updated 5 months ago
- Abusing Azure services over C2☆367Jan 20, 2026Updated 2 months ago
- ☆15May 3, 2024Updated last year
- Generic PE loader for fast prototyping evasion techniques☆245Jul 2, 2024Updated last year
- Interesting APT Report Collection And Some Special IOCs☆2,955Updated this week
- A curated list of Awesome Threat Intelligence Blogs☆512Feb 16, 2026Updated last month
- Create malware knowledge graphs from analysis reports☆39Dec 6, 2023Updated 2 years ago
- a tiny program to consume from ETW providers for research☆54Jan 4, 2025Updated last year
- Living off the False Positive!☆42Jan 31, 2025Updated last year
- Abuse leaked token handles.☆136Dec 14, 2023Updated 2 years ago
- Shellcode loader that executes embedded Lua from Rust.☆127Dec 16, 2024Updated last year
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆787Updated this week
- IOCs collected during day-to-day activities☆114Updated this week
- GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.☆28Jun 14, 2024Updated last year
- Deobfuscation of XorStringsNet☆14Nov 5, 2024Updated last year
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 5 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆95Jun 18, 2024Updated last year