Alternatives and similar repositories for Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs

Users that are interested in Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs are comparing it to the libraries listed below

• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆103Updated last year
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆115Updated 4 years ago
• sansinstitute / slingshot
  SANS Slingshot Linux Distribution
  ☆55Updated 5 years ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆81Updated last week
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 4 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated 2 years ago
• malpedia / malpediaclient
  ☆27Updated 5 months ago
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆65Updated 11 months ago
• tropChaud / webpage2attack
  Generate portable TTP intelligence from a web-based report
  ☆31Updated 3 years ago
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆21Updated this week
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆67Updated last year
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated 2 months ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆81Updated 6 months ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated 2 weeks ago
• viper-framework / viper2
  File analysis and management framework.
  ☆92Updated 2 years ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆127Updated 8 months ago
• malvuln / Adversary3
  Malware vulnerability intel tool for third-party attackers
  ☆122Updated last year
• pan-unit42 / wireshark-tutorial-Dridex-traffic
  pcaps for Wireshark tutorial about examining Dridex infection traffic
  ☆17Updated 5 years ago
• nsacyber / PRUNE
  Logs key Windows process performance metrics. #nsacyber
  ☆68Updated 3 years ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆46Updated last year
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆70Updated last week
• calebstewart / python-sigma
  Python API for interacting with sigma rules.
  ☆55Updated 3 years ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Updated 3 years ago
• mitre / training
  A CALDERA plugin
  ☆26Updated 2 weeks ago
• PayloadSecurity / Sandbox_Scryer
  ☆226Updated 3 years ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆99Updated 2 years ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆127Updated 5 years ago