Personal compilation of APT malware from whitepaper releases, documents and own research
☆265Feb 7, 2019Updated 7 years ago
Alternatives and similar repositories for Threat-Hunting
Users that are interested in Threat-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆729Dec 26, 2022Updated 3 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆478Apr 8, 2021Updated 5 years ago
- Interesting APT Report Collection And Some Special IOCs☆3,007Jun 20, 2026Updated last week
- A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.☆585Mar 24, 2023Updated 3 years ago
- Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.☆970Feb 28, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆70Dec 2, 2022Updated 3 years ago
- APT & CyberCriminal Campaign Collection☆4,090Jul 25, 2024Updated last year
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆85Jun 4, 2022Updated 4 years ago
- A collection of resources for Threat Hunters☆915Oct 15, 2024Updated last year
- Windows Events Attack Samples☆2,580Jan 24, 2023Updated 3 years ago
- This repo is where I store my Threat Hunting ideas/content☆90Mar 20, 2026Updated 3 months ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Apr 13, 2018Updated 8 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆79Jul 2, 2020Updated 5 years ago
- Telsy CTI Research Team☆57Dec 15, 2020Updated 5 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Threat-Intelligence Feeds & Tools & Frameworks☆224Jun 7, 2024Updated 2 years ago
- Repository of YARA rules made by Trellix ATR Team☆624Mar 18, 2025Updated last year
- ☆53Mar 4, 2019Updated 7 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,592Jan 12, 2026Updated 5 months ago
- Steal users password with a fake sudo function.☆44Feb 29, 2024Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,187Jul 26, 2023Updated 2 years ago
- Extract and aggregate threat intelligence.☆917May 26, 2026Updated last month
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…☆57Jan 10, 2018Updated 8 years ago
- A toolkit for Security Researchers☆125Sep 2, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,077Nov 28, 2024Updated last year
- Misc Threat Hunting Resources☆379Jan 26, 2023Updated 3 years ago
- Re-play Security Events☆1,773Mar 20, 2024Updated 2 years ago
- ☆350Mar 19, 2021Updated 5 years ago
- DFIRTrack - The Incident Response Tracking Application☆536Jan 13, 2026Updated 5 months ago
- A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net☆934Mar 26, 2024Updated 2 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15May 30, 2026Updated 3 weeks ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago
- Malcom - Malware Communications Analyzer☆1,170Nov 29, 2017Updated 8 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Searches For Threat Hunting and Security Analytics☆239Mar 26, 2025Updated last year
- Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.☆173May 29, 2024Updated 2 years ago
- PCAP Samples for Different Post Exploitation Techniques☆372Apr 29, 2021Updated 5 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆55Dec 5, 2018Updated 7 years ago
- Your Everyday Threat Intelligence☆1,997May 15, 2026Updated last month
- Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, M…☆3,891Updated this week
- Static file analysis for PE files☆13Dec 4, 2020Updated 5 years ago