threatrack / cti_report_collection
Repository collecting and automagically processing public threat intelligence reports.
☆18Updated 4 years ago
Alternatives and similar repositories for cti_report_collection:
Users that are interested in cti_report_collection are comparing it to the libraries listed below
- Tweettioc Splunk App☆20Updated 4 years ago
- ☆22Updated last year
- Repository of Yara rules created by the Stratosphere team☆26Updated 3 years ago
- Windows GUI/Execution Engine for Atomic Red Team Atomics☆34Updated 4 years ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated last month
- Tracking APT IOCs☆25Updated 4 years ago
- This tool maps a file's behavior on MITRE ATT&CK matrix.☆57Updated 4 years ago
- Sources code extracted from malwares for analysis☆36Updated last year
- 威胁检测规则集☆15Updated 5 years ago
- Suricata LUA scripts to detect CVE-2019-12255, CVE-2019-12256, CVE-2019-12258, and CVE-2019-12260☆19Updated 5 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- All in one - Malware + Analysis by Cylance☆11Updated 6 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 6 years ago
- ssdeep cluster analysis for malware files☆31Updated 4 years ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 6 months ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- Is this IP a C2 server?☆28Updated 4 years ago
- Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.☆36Updated 4 years ago
- Some talks about security☆13Updated 4 years ago
- Everything related to Cobalt Strike☆15Updated 4 years ago
- PoC for CVE-2019-10149, this vulnerability could be xploited betwen 4-87 to 4.91 version of Exim server.☆14Updated 5 years ago
- A collection of Malleable C2 profiles that work with Cobalt Strike 3.x.☆28Updated 5 years ago
- Community maintained list of most popular HIPS service and process names on a Windows Platform.☆43Updated 2 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- ☆41Updated 2 years ago
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Updated 4 years ago
- WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…☆32Updated 4 years ago
- Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation☆16Updated 6 years ago
- Explore Indicators of Compromise Automatically☆94Updated 4 years ago
- A Flexible Web Shell Client, Built on Electron☆13Updated 2 years ago