vlegoy / rcATT
A python app to predict Att&ck tactics and techniques from cyber threat reports
☆120Updated last year
Alternatives and similar repositories for rcATT:
Users that are interested in rcATT are comparing it to the libraries listed below
- Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…☆164Updated last year
- A Novel and Modular Solution for Extracting All STIX Objects in CTI Reports☆23Updated last year
- Unfetter Insight performs natural language processing and analysis for text data to determine and convert to CTI Stix data automatically.☆19Updated 6 years ago
- ☆76Updated 2 years ago
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆349Updated 3 years ago
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆92Updated 10 months ago
- ☆22Updated 3 years ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆148Updated 2 years ago
- ☆107Updated 4 years ago
- TTPDrill focuses on developing automated and context-aware analytics of cyber threat intelligence to accurately learn attack patterns (TT…☆26Updated 4 years ago
- Extracting Attack Behavior from Threat Reports☆76Updated 2 years ago
- OASIS TC Open Repository: Lightweight visualization for STIX 2.0 objects and relationships☆149Updated last week
- Tools to interact with APTnotes reporting/index.☆103Updated 4 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆137Updated 4 years ago
- OASIS TC Open Repository: TAXII 2 Server Library Written in Python☆128Updated last year
- TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…☆488Updated this week
- Tool to extract indicators of compromise from security reports in PDF format☆434Updated 2 years ago
- 🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…☆235Updated last year
- SecureBERT is a domain-specific language model to represent cybersecurity textual data.☆89Updated 9 months ago
- ☆25Updated last year
- Cyber Security concepts extracted from unstructured threat intelligence reports using Named Entity Recognition☆104Updated last year
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆102Updated 3 years ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆77Updated 9 months ago
- ☆81Updated 2 years ago
- A tool to extract structured cyber information from incident reports.☆80Updated 6 years ago
- Security ML models encoded as Yara rules☆214Updated last year
- This content is analysis and research of the data sources currently listed in ATT&CK.☆409Updated last year
- OASIS TC Open Repository: Non-normative schemas and examples for STIX 2☆125Updated 6 months ago
- OASIS Cyber Threat Intelligence (CTI) TC: A repository for commonly used STIX objects in order to avoid needless duplication. https://gi…☆93Updated this week