Intelligence around common attacker behaviors (MITRE ATT&CK TTPs), in the form of ATT&CK Navigator "layer" json files.
☆36Aug 12, 2022Updated 3 years ago
Alternatives and similar repositories for Cyber-Adversary-Heatmaps
Users that are interested in Cyber-Adversary-Heatmaps are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…☆55Jul 31, 2022Updated 3 years ago
- Generate portable TTP intelligence from a web-based report☆32Oct 24, 2022Updated 3 years ago
- Pritunl Access Control System☆10Jun 19, 2026Updated 2 weeks ago
- LockBit-Black-Builder_ ;this is Lockbit Black Builder☆11Sep 28, 2022Updated 3 years ago
- A Real-time Event Correlation platform☆16Jan 30, 2017Updated 9 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Firepit - STIX Columnar Storage☆18Jun 5, 2024Updated 2 years ago
- Virtual machines that are set up with a variety of known vulnerabilities.☆17Mar 1, 2022Updated 4 years ago
- Attack Tool Timing and Reporting - Structured Attack Logging Format☆22Nov 4, 2022Updated 3 years ago
- WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.☆17Jun 27, 2026Updated last week
- Collaborative, web-based case management for incident response☆24Jan 23, 2024Updated 2 years ago
- 🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…☆387Apr 3, 2024Updated 2 years ago
- A tool to automate memory dump processing using Volatility, including optional Splunk integration.☆11Jul 29, 2020Updated 5 years ago
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆45Jun 6, 2022Updated 4 years ago
- Cyber Threats Detection Rules☆14Sep 16, 2025Updated 9 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆17Apr 23, 2025Updated last year
- simple webapp for converting sigma rules into siem queries using the pySigma library☆50Sep 1, 2023Updated 2 years ago
- ☆19Oct 30, 2020Updated 5 years ago
- Graphical map of known Advanced Persistent Threats☆65Jan 31, 2026Updated 5 months ago
- Scripts to help and speed up reversing activities☆13Jun 30, 2026Updated last week
- Common Exercise Format - CEXF☆11Aug 15, 2024Updated last year
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Apr 27, 2024Updated 2 years ago
- ☆20Updated this week
- UI based on react awesome query builder to visualize rule building on rule engine☆29Apr 29, 2022Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- This repository regroups the Yara Rules for the Unprotect Project☆26Nov 19, 2020Updated 5 years ago
- OSSEM Detection Model☆184Oct 11, 2022Updated 3 years ago
- Sharing Threat Hunting runbooks☆27Jul 5, 2019Updated 7 years ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆54Jul 20, 2023Updated 2 years ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆27Mar 20, 2025Updated last year
- Scripts to automate standing up C2 infra with firewall settings inside of DigitalOcean.☆18Feb 5, 2021Updated 5 years ago
- OpenCSPM Community Controls☆14May 18, 2021Updated 5 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Dec 14, 2021Updated 4 years ago
- Learn how to get more out of publicly available threat reports to help improve the security posture of your organization! TLP: White Thre…☆15Jun 5, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 📄Source code variable naming using a seq2seq architecture☆10Mar 19, 2020Updated 6 years ago
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆143Feb 25, 2024Updated 2 years ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆61Mar 2, 2026Updated 4 months ago
- SIEM Detection Use Case Library mapped to MITRE ATT&CK tactics and techniques☆12Oct 28, 2018Updated 7 years ago
- A work in progress project aimed at conversion of SQL queries to LINQ queries☆35Dec 20, 2018Updated 7 years ago
- Elemental - An ATT&CK Threat Library☆319Dec 8, 2022Updated 3 years ago
- ☆543Updated this week