Alternatives and similar repositories for Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs

Users that are interested in Chinese-State-Sponsored-Cyber-Operations-Observed-TTPs are comparing it to the libraries listed below

• sans-blue-team / sec555-mdwiki-v1
  ☆11Updated 5 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated 2 years ago
• cisagov / kali-packer
  This project can be used to create AMIs based on Kali Linux, a penetration testing distribution.
  ☆21Updated 2 weeks ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆82Updated 3 weeks ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated last month
• sansinstitute / slingshot
  SANS Slingshot Linux Distribution
  ☆56Updated 5 years ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆67Updated last year
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆100Updated 2 years ago
• mitre / training
  A CALDERA plugin
  ☆26Updated last week
• fulmetalpackets / protohacking
  This repository contains the code and PCAPS used for the SANS webinar, "Hacking Proprietary Protocols" given on February 23, 2021.
  ☆34Updated 3 years ago
• Project-Prismatica / Oculus
  ☆12Updated 3 years ago
• hackjalstead / IRCP
  A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments
  ☆65Updated 3 years ago
• malpedia / malpediaclient
  ☆27Updated 6 months ago
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆70Updated this week
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆46Updated last year
• cmdaltr / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆32Updated 2 months ago
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 6 years ago
• tylabs / quicksand
  QuickSand document and PDF malware analysis tool written in Python
  ☆135Updated 2 months ago
• center-for-threat-informed-defense / caldera_pathfinder
  Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translatin…
  ☆128Updated 9 months ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Updated 3 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆81Updated 7 months ago
• nsacyber / PRUNE
  Logs key Windows process performance metrics. #nsacyber
  ☆68Updated 3 years ago
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆35Updated 2 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆76Updated 5 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆79Updated 3 months ago
• pstirparo / threatintel-resources
  Resources, tools and utilities about Threat Intelligence
  ☆79Updated 2 years ago
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆65Updated last year
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆128Updated 5 years ago