cti

There are 20 repositories under cti topic.

• smicallef / spiderfoot

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  footprintingosintthreatintelpythoninfosecintelligence-gatheringosint-reconnaissancepentestingthreat-intelligencesecurity-toolsinformation-gatheringcybersecurityctiosint-frameworkattacksurfaceosint-toolhackinginformation-securityrecon
  Language:Python 11684

• MISP / MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  mispthreat-sharingthreat-huntingthreatintelmalware-analysisstixinformation-exchangefraud-managementsecuritycticybersecurityfraud-detectionfraud-preventionthreat-analysisinformation-securityinformation-sharingthreat-intelligencethreat-intelligence-platformintelligencethreat-intel
  Language:PHP 4970

• OpenCTI-Platform / opencti

  Open Cyber Threat Intelligence Platform

  cyberctithreat-intelligencesecurityintelligenceosintcybersecurity
  Language:TypeScript 4617

• fastfire / deepdarkCTI

  Collection of Cyber Threat Intelligence sources from the deep and dark web

  ctithreat-intelligencecyberhunterdarkwebdeepweb
  3695

• mitre-attack / attack-navigator

  Web app that provides basic navigation and annotation of ATT&CK matrices

  cticyber-threat-intelligencemitre-attackmitre-corporationcybersecurity
  Language:TypeScript 1872

• mitre / cti

  Cyber Threat Intelligence Repository expressed in STIX 2.0

  stixcticyber-threat-intelligenceattack
  1624

• curated-intel / Ukraine-Cyber-Operations

  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

  ukraineosintctithreat-intelligenceiocsthreat-huntingyaramalware
  Language:YARA 908

• mitre-attack / attack-scripts

  Scripts and a (future) library to improve users' interactions with the ATT&CK content

  cybersecuritycyber-threat-intelligencemitre-corporationctimitre-attackpython
  Language:Python 573

• BushidoUK / Open-source-tools-for-CTI

  Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

  cticybersecurityinfosecmalwareosintthreatintel
  475

• center-for-threat-informed-defense / attack-control-framework-mappings

  🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.

  cticyber-threat-intelligencemitre-attackcybersecuritynist800-53security-controlsctidthreat-informed-defenserisk-management
  Language:Python 467

• mitre-attack / attack-website

  MITRE ATT&CK Website

  cybersecuritymitre-corporationcyber-threat-intelligencemitre-attackcti
  Language:HTML 455

• mitre-attack / mitreattack-python

  A python module for working with ATT&CK

  cticyber-threat-intelligencecybersecuritymitre-attackmitre-corporationpython
  Language:Python 368

• oasis-open / cti-python-stix2

  OASIS TC Open Repository: Python APIs for STIX 2

  cticyber-threat-intelligencejsonoasispythonstixstix2
  Language:Python 350

• MISP / misp-modules

  Modules for expansion services, enrichment, import and export in MISP and other tools.

  ctidomaintoolsenrichmentexpansionmispmisp-modulesosintpassive-dnspassivetotalthreat-intelligence
  Language:Python 324
• Core

  mikopbx / Core

  Free, easy to setup PBX for small business based on Asterisk 16 core

  asteriskpbxtelephonyphalconctipjsipvoip-servervoipasterisk-pbxasterisk-amiasterisk-serverasterisk-manager-apiasterisk-agiasterisk-dialplansipsip-servercommunicationsiaxvirtual-machineiso
  Language:PHP 319

• OpenCTI-Platform / connectors

  OpenCTI Connectors

  cybersecurityctithreat-intelligencemispmitre-attack
  Language:Python 319

• mitre-attack / attack-stix-data

  STIX data representing MITRE ATT&CK

  attackstixcybersecuritymitre-corporationcticyber-threat-intelligence
  Language:Python 282
• KP-Liberation

  KillahPotatoes / KP-Liberation

  The work on GreuhZbugs Liberation Mission for Arma 3 continues...

  arma3liberationmissioncoopctisqf
  Language:SQF 266

• RansomLook / RansomLook

  Yet another Ransomware gang tracker

  ctiransomwarethreat-intelligencethreatintelransomlook
  Language:Python 240
• awesome-lists

  mthcht / awesome-lists

  Security lists for SOC detections

  blueteamhacktoolskeywordslistoffensive-securitypurpleteamredteamsecuritysocawesomeawesome-listawesome-listsctiiocmispopen-source
  Language:PowerShell 200

• curated-intel / Log4Shell-IOCs

  A collection of intelligence about Log4Shell and its exploitation activity.

  log4jlog4j2log4shelliocttpcve-2021-44228javactithreatintelligencethreatintelkinsingm8220swrortmuhstikcobalt-strikekhonsarikirabashsitesloadermiraicybersecurity
  Language:Python 182

• eclecticiq / OpenTAXII

  TAXII server implementation in Python from EclecticIQ

  taxiistixctipythontaxii-serverthreatintelthreat-sharingcyber-threat-intelligence
  Language:Python 180

• MISP / misp-playbooks

  MISP Playbooks

  mispplaybooksmisp-playbookscticyber-securitythreat-intelligence
  Language:Jupyter Notebook 150

• docintelapp / DocIntel

  Open Source Platform for storing, organizing, and searching documents related to cyber threats

  cticybersecurityintelligencesecuritythreat-huntingthreat-intelligencethreatintelinformation-securitythreat-intelligence-platform
  Language:JavaScript 144

• typedb-osi / typedb-cti

  Open Source Threat Intelligence Platform

  cticybersecuritysecurityintelligenceosintcyberthreat-intelligence
  Language:Python 133

• oasis-open / cti-stix-visualization

  OASIS TC Open Repository: Lightweight visualization for STIX 2.0 objects and relationships

  cticyber-threat-intelligencejavascriptjsonoasisstixstix2visualizationvisualizer
  Language:JavaScript 129

• BushidoUK / CTI-Lexicon

  Dictionary of CTI-related acronyms, terms, and jargon

  ctithreatintelanalystcybersecurity
  124

• EvoluxBR / greenswitch

  Battle proven FreeSWITCH Event Socket Protocol client implementation with Gevent

  freeswitchesltelephonyintegrationctihacktoberfest
  Language:Python 122

• oasis-open / cti-taxii-server

  OASIS TC Open Repository: TAXII 2 Server Library Written in Python

  cticyber-threat-intelligenceoasispythonpython-scriptservertaxiitaxii2
  Language:Python 112

• curated-intel / Initial-Access-Broker-Landscape

  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape

  cyber-threat-intelligencectiransomwaremalwaredarkwebiabinitial-access-brokerinitial-access-brokersinitialaccessinitial-access
  105

• oasis-open / cti-stix2-json-schemas

  OASIS TC Open Repository: Non-normative schemas and examples for STIX 2

  antlrcticyber-threat-intelligencejsonjson-schemaoasisschemasstixstix2
  Language:ANTLR 104

• oasis-open / cti-taxii-client

  OASIS TC Open Repository: TAXII 2 Client Library Written in Python

  clientcticyber-threat-intelligencejsonoasispythontaxiitaxii2
  Language:Python 103

• telekom-security / malware_analysis

  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.

  ctimalwaremalware-analysismalware-researchreverse-engineering
  Language:Python 103

• eclecticiq / cabby

  TAXII client implementation from EclecticIQ

  stixtaxiitaxii-clientctipythonthreatintelthreat-sharing
  Language:Python 95
• Community

  SEKOIA-IO / Community

  Welcome to the SEKOIA.IO Community repository!

  anticipationdetectionautomationcti
  Language:Python 94

• oasis-open / cti-documentation

  OASIS TC Open Repository: GitHub Pages site for STIX and TAXII

  cticyber-threat-intelligencejsonoasisstixstix2taxiitaxii2
  Language:SCSS 89