Alternatives and similar repositories for Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs

Users that are interested in Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs are comparing it to the libraries listed below

• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated last year
• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 4 years ago
• mitre / training
  A CALDERA plugin
  ☆26Updated last month
• simeononsecurity / Blue-Team-Tools
  A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…
  ☆102Updated last year
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• mitre / access
  A CALDERA plugin
  ☆25Updated 2 months ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆127Updated 8 months ago
• calebstewart / python-sigma
  Python API for interacting with sigma rules.
  ☆54Updated 3 years ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated last week
• cyberbuff / TheAtomicPlaybook
  The Atomic Playbook contains TTPs from the MITRE ATT&CK framework mapped to the tests in the Atomic Red Team. It serves as a single resou…
  ☆34Updated 5 months ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆99Updated 2 years ago
• CronUp / Malware-IOCs
  ☆96Updated 7 months ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆81Updated last week
• malvuln / Adversary3
  Malware vulnerability intel tool for third-party attackers
  ☆122Updated last year
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆116Updated 4 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• mitre / emu
  This CALDERA Plugin converts Adversary Emulation Plans from the Center for Threat Informed Defense
  ☆34Updated 2 months ago
• Project-Prismatica / Oculus
  ☆12Updated 3 years ago
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆206Updated last week
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆29Updated last year
• Symantec / threathunters
  ☆29Updated 11 months ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Updated 3 years ago
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆21Updated 3 weeks ago
• viper-framework / viper2
  File analysis and management framework.
  ☆90Updated 2 years ago
• malpedia / malpediaclient
  ☆27Updated 4 months ago
• michaelb / simple-user-simulation
  powershell script to simulate activity by a user
  ☆21Updated 5 years ago
• BinaryDefense / ThreatHuntingJupyterNotebooks
  ☆63Updated 3 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆79Updated 6 months ago
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆55Updated 3 years ago