trellix-enterprise / ac3-threat-sightingsView external linksLinks
A threat sighting collects the behavior of a real threats and the observables used during its engagement.
☆12Mar 29, 2022Updated 3 years ago
Alternatives and similar repositories for ac3-threat-sightings
Users that are interested in ac3-threat-sightings are comparing it to the libraries listed below
Sorting:
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.☆36Aug 12, 2022Updated 3 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- My Jupyter Notebooks☆36Mar 14, 2025Updated 11 months ago
- Living Under the Land on Linux ~ Bsides Belfast/Vienna 2025☆37Nov 22, 2025Updated 2 months ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- Intel Retrieval Augmented Generation (RAG) Utilities☆91Jan 29, 2024Updated 2 years ago
- ☆27Feb 6, 2022Updated 4 years ago
- OASIS CTI TC: Provides issue tracking and wiki pages for the STIX 2.x Work Products☆26Sep 12, 2025Updated 5 months ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆34Oct 21, 2025Updated 3 months ago
- Augmentation to Machine Readable CTI☆37Sep 9, 2025Updated 5 months ago
- ☆34May 24, 2023Updated 2 years ago
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆42Jan 20, 2026Updated 3 weeks ago
- STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling☆33Dec 9, 2024Updated last year
- ☆15Sep 4, 2024Updated last year
- ☆10Mar 25, 2024Updated last year
- User Feedback Space of #MitreAssistant☆38May 19, 2023Updated 2 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆10Jun 3, 2017Updated 8 years ago
- Source code for my blog DeepNotes☆15May 4, 2023Updated 2 years ago
- Sample SecOps scripts and Utilities☆12Jun 19, 2024Updated last year
- It's a handy tool to help you analyze malware. You can use this tool to query your malware samples using different hashes or find all oth…☆20Jul 22, 2025Updated 6 months ago
- An HTTP proxy library for Go☆17Jun 22, 2022Updated 3 years ago
- Network Shredder IDS☆11Aug 14, 2024Updated last year
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆42Oct 29, 2024Updated last year
- ☆57Jan 28, 2024Updated 2 years ago
- InternetOff turns access to the Internet off and on again, without affecting access to the local network. It is a small program that work…☆13Jan 1, 2020Updated 6 years ago
- Download all the HIBP passwords☆12Apr 6, 2023Updated 2 years ago
- ☆11Feb 22, 2022Updated 3 years ago
- List of links and resources referred to in my SANS OSINT Summit 2024 Talk "OSINT On The Russian Internet"☆11Feb 29, 2024Updated last year
- All my POC related to malware development☆14May 13, 2024Updated last year
- RepoToStoreBugBountyInfo☆11Mar 11, 2020Updated 5 years ago
- A set of tools that allow researchers to experiment with certificate chain validation issues☆13Dec 4, 2019Updated 6 years ago
- ☆10Dec 19, 2024Updated last year
- Plugin that serves the ATT&CK website alongside CALDERA.☆12Feb 24, 2020Updated 5 years ago
- Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersec…☆14Jul 19, 2025Updated 6 months ago
- Volatility 3 plugins to extract a module as complete as possible☆12Jun 13, 2023Updated 2 years ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- Here comes the paintrain!☆11Aug 8, 2016Updated 9 years ago