Personal compilation of APT malware from whitepaper releases, documents and own research
☆265Feb 7, 2019Updated 7 years ago
Alternatives and similar repositories for Threat-Hunting
Users that are interested in Threat-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆726Dec 26, 2022Updated 3 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆478Apr 8, 2021Updated 5 years ago
- Interesting APT Report Collection And Some Special IOCs☆3,000Updated this week
- A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.☆581Mar 24, 2023Updated 3 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆70Dec 2, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- APT & CyberCriminal Campaign Collection☆4,079Jul 25, 2024Updated last year
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Jun 4, 2022Updated 3 years ago
- A collection of resources for Threat Hunters☆918Oct 15, 2024Updated last year
- This repo is where I store my Threat Hunting ideas/content☆90Mar 20, 2026Updated 2 months ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Apr 13, 2018Updated 8 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Jul 2, 2020Updated 5 years ago
- Windows Events Attack Samples☆2,564Jan 24, 2023Updated 3 years ago
- Telsy CTI Research Team☆57Dec 15, 2020Updated 5 years ago
- Threat-Intelligence Feeds & Tools & Frameworks☆222Jun 7, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Repository of YARA rules made by Trellix ATR Team☆628Mar 18, 2025Updated last year
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,568Jan 12, 2026Updated 4 months ago
- Steal users password with a fake sudo function.☆44Feb 29, 2024Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,183Jul 26, 2023Updated 2 years ago
- Extract and aggregate threat intelligence.☆912Jan 31, 2024Updated 2 years ago
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…☆57Jan 10, 2018Updated 8 years ago
- A toolkit for Security Researchers☆125Sep 2, 2019Updated 6 years ago
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,077Nov 28, 2024Updated last year
- Misc Threat Hunting Resources☆379Jan 26, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Re-play Security Events☆1,757Mar 20, 2024Updated 2 years ago
- ☆350Mar 19, 2021Updated 5 years ago
- DFIRTrack - The Incident Response Tracking Application☆534Jan 13, 2026Updated 4 months ago
- A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net☆934Mar 26, 2024Updated 2 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15Aug 15, 2022Updated 3 years ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago
- Malcom - Malware Communications Analyzer☆1,169Nov 29, 2017Updated 8 years ago
- Searches For Threat Hunting and Security Analytics☆239Mar 26, 2025Updated last year
- Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.☆173May 29, 2024Updated 2 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- PCAP Samples for Different Post Exploitation Techniques☆371Apr 29, 2021Updated 5 years ago
- Your Everyday Threat Intelligence☆1,988May 15, 2026Updated 2 weeks ago
- Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, M…☆3,835Apr 16, 2026Updated last month
- Static file analysis for PE files☆13Dec 4, 2020Updated 5 years ago
- Defanged Indicator of Compromise (IOC) Extractor.☆578Aug 28, 2024Updated last year
- Utilities for Sysmon☆1,645Apr 4, 2026Updated last month
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆624Updated this week