There are 15 repositories under threat topic.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
The Correlated CVE Vulnerability And Threat Intelligence Database API
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
SIEM Tactics, Techiques, and Procedures
a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance
A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Collection of Threat Models
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
Repository resource for threat hunter
国内恶意IP封禁计划,还赛博空间一片朗朗乾坤
PatrowlHears - Vulnerability Intelligence Center / Exploits
Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
Consolidation of various resources related to Microsoft Sysmon & sample data/log
ThreatSeeker: Threat Hunting via Windows Event Logs
MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools
Curating Falco rules with MITRE ATT&CK Matrix
Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. Sugar-Free and Secure: no any external dependencies except for chart plotting are used
A simple threat meter for WoW Classic (1.13.2)
Quick analysis focusing on most important of a Malware or a Threat