threat-intelligence

There are 155 repositories under threat-intelligence topic.

• smicallef / spiderfoot

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  attacksurfacecticybersecurityfootprintinghackinginformation-gatheringinformation-securityinfosecintelligence-gatheringosintosint-frameworkosint-reconnaissanceosint-toolpentestingpythonreconsecurity-toolsthreat-intelligencethreatintel
  Language:Python 13617

• rshipp / awesome-malware-analysis

  Defund the Police.

  analysis-frameworkautomated-analysisawesomeawesome-listchinesechinese-translationdomain-analysisdrop-icedynamic-analysislistmalware-analysismalware-collectionmalware-researchmalware-samplesnetwork-trafficstatic-analysisthreat-intelligencethreat-sharingthreatintel
  12220

• edoardottt / awesome-hacker-search-engines

  A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

  awesomeawesome-listhackingsearch-engineosintawesome-listsdnshacking-toolsexploitsecuritysecurity-toolswifi-networkbugbountyosint-toolvulnerabilitiesredteamredteamingcvehacktoberfestthreat-intelligence
  Language:Shell 8223

• blacklanternsecurity / bbot

  The recursive internet scanner for hackers. 🧡

  asmattack-surface-managementautomationbugbountyclieasmhackingneo4josintosint-frameworkpentestingpythonreconrecursionscannersubdomain-enumerationsubdomain-scannersubdomainsthreat-intelligencethreatintel
  Language:Python 7713

• OpenCTI-Platform / opencti

  Open Cyber Threat Intelligence Platform

  cticybercybersecurityintelligenceosintsecuritythreat-intelligence
  Language:TypeScript 6780

• MISP / MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  cticybersecurityfraud-detectionfraud-managementfraud-preventioninformation-exchangeinformation-securityinformation-sharingintelligencemalware-analysismispsecuritystixthreat-analysisthreat-huntingthreat-intelthreat-intelligencethreat-intelligence-platformthreat-sharingthreatintel
  Language:PHP 5497
• capa

  mandiant / capa

  The FLARE team's open-source tool to identify capabilities in executable files.

  binary-analysismalware-analysisreverse-engineeringthreat-intelligence
  Language:Python 5033

• elceef / dnstwist

  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

  dnsdomainsfuzzinghomoglyphhomograph-attackidnosintphishingscannerthreat-huntingthreat-intelligencetyposquatting
  Language:Python 5001

• fastfire / deepdarkCTI

  Collection of Cyber Threat Intelligence sources from the deep and dark web

  cticyberhunterdarkwebdeepwebthreat-intelligence
  4730

• devsecops / awesome-devsecops

  An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

  devopsdevsecopspodcastthreat-intelligence
  4711
• IntelOwl

  intelowlproject / IntelOwl

  IntelOwl: manage your Threat Intelligence at scale

  cyber-securitycyber-threat-intelligencecybersecuritydfirenrichmenthacktoberfesthoneynetincident-responseintel-owliocmalware-analysismalware-analyzerosintosint-pythonpythonsecurity-toolsthreat-huntingthreat-intelligencethreathuntingthreatintel
  Language:Python 3977
• teler

  teler-sh / teler

  Real-time HTTP Intrusion Detection

  analyze-logsgogolangidsintrusionintrusion-detectionintrusion-detection-systemiocsloglog-analyzerlogsthreatthreat-analyzerthreat-huntingthreat-intelligencethreat-rules
  Language:Go 3034

• Neo23x0 / signature-base

  YARA signature and IOC database for my scanners and tools

  anti-virusdfirhashiocscannersignaturethreat-huntingthreat-intelligenceyarayara-rules
  Language:YARA 2535
• Digital-Forensics-Guide

  mikeroyal / Digital-Forensics-Guide

  Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

  digitalforensicsdigitalforensicreadinessforensicssecurityforensics-toolsdigital-forensicsthreat-intelligenceintrusion-detectionmitre-attackdetection-engineeringnetwork-securityoffensive-securitycyber-securityport-scanningsiemalertingforensic-analysisforensics-investigationsosintdfir
  Language:Python 1727

• x0rz / phishing_catcher

  Phishing catcher using Certstream

  certificate-transparencyosintphishingthreat-intelligencethreatintel
  Language:Python 1727

• osintbrazuca / osint-brazuca

  Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

  brasilhackingosintthreat-huntingthreat-intelligencethreatintel
  1718

• AmnestyTech / investigations

  Indicators of Compromise from Amnesty International's cyber investigations

  forensicsspywarethreat-huntingthreat-intelligence
  Language:Python 1579

• ninoseki / mitaka

  A browser extension for OSINT search

  chrome-extensionosintsecuritythreat-intelligence
  Language:TypeScript 1517

• nshalabi / SysmonTools

  Utilities for Sysmon

  loggingmonitoringnetsecsysinternalssysmonthreat-huntingthreat-intelligencethreatintelwindows
  1499

• trickest / inventory

  Asset inventory of over 800 public bug bounty programs.

  bug-bountybugbountybugbountytipsfuzzinghackinginfosecosintosint-resourcesosint-toolpenetration-testingpentest-toolpentestingreconreconnaissancered-teamsecuritysecurity-toolssoftware-securitythreat-intelligence
  Language:Shell 1313

• Te-k / harpoon

  CLI tool for open source and threat intelligence

  osintosint-frameworkthreat-intelligencethreatintel
  Language:Python 1188
• ThePhish

  emalderson / ThePhish

  ThePhish: an automated phishing email analysis tool

  emaildetectionmalwarephishingcybersecuritymispthehivethehive4thehive4pyindicators-of-compromisecyberdefensephishing-detectionpythonincident-responsefreedigital-forensicsthreat-intelligencewebappattackscript
  Language:Python 1179

• tomchop / malcom

  Malcom - Malware Communications Analyzer

  dfirinfosecmalwaremalware-analysisnetwork-trafficpcapthreat-intelligence
  Language:Python 1159

• alvin-tosh / Malware-Exhibit

  🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have Compiled & analysed by researchers🔥 to understand more about Malware threats😈, analysis and mitigation🧐.

  aptcryptographycybersecurityencryption-decryptionethical-hackinginfoseckeyloggermalwaremalware-analysismalware-researchnotpetya-malwarepetyaransomwarespywarestealer-windowsthreat-huntingthreat-intelligencetrojanviruswannacry-ransomware
  Language:Assembly 1026

• toolswatch / vFeed

  The Correlated CVE Vulnerability And Threat Intelligence Database API

  capeccommon-vulnerability-exposurecvecweexploitsintelligence-gatheringovalpythonscapthreatthreat-intelligencethreat-intelligence-databasethreatintelvfeedvulnerabilityvulnerability-database-entryvulnerability-databasesvulnerability-detectionvulnerability-identificationvulnerability-scanners
  Language:Python 937

• osintbrazuca / osint-brazuca-regex

  Repositório criado com intuito de reunir expressões regulares dentro do contexto Brasil

  brasilbrazilhackingosintregexthreat-huntingthreat-intelligence
  931

• curated-intel / Ukraine-Cyber-Operations

  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

  ctiiocsmalwareosintthreat-huntingthreat-intelligenceukraineyara
  Language:YARA 919

• BushidoUK / Ransomware-Tool-Matrix

  A resource containing all the tools each ransomware gangs uses

  cticybersecuritydetection-engineeringhackingosintransomwarethreat-huntingthreat-intelligencethreatintel
  897
• Watcher

  thalesgroup-cert / Watcher

  Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

  certificate-transparencycertstreamcybersecuritydjangoincident-responsemispmonitoringnltkosintosint-pythonphishingreactjsrss-bridgesecuritythehivethreat-detectionthreat-huntingthreat-intelligencewatcherwebapp
  Language:Python 878
• DaProfiler

  daprofiler / DaProfiler

  DaProfiler is an OSINT tool allowing you to collect certain information about yourself in order to rectify by rgpd requests the traces you may have left on the net. DaProfiler is indeed able to recover: Addresses, Social media accounts, e-mail addresses, mobile / landline number, jobs.

  osintsocial-mediasocial-networkinstagramemailfacebookskypepythonosint-pythonosint-toolsthreat-intelligencetracelabsintelligenceinformation-gatheringemailsfranceperson-search
  Language:Python 877

• ninoseki / mihari

  A query aggregator for OSINT based threat hunting

  osintthreat-huntingthreat-intelligence
  Language:Ruby 876

• A3sal0n / CyberThreatHunting

  A collection of resources for Threat Hunters

  cybersecuritydfirincident-responsethreat-huntingthreat-intelligence
  Language:Python 872

• InQuest / ThreatIngestor

  Extract and aggregate threat intelligence.

  dfirfraud-detectionindicators-of-compromiseintelligence-gatheringiocmalware-researchmisposintsecurity-toolssoarthreat-analysisthreat-feedsthreat-huntingthreat-intelligencethreat-intelligence-platformthreat-sharingthreatintelyara
  Language:Python 840
• awesome-lists

  mthcht / awesome-lists

  Awesome Security lists for SOC/CERT/CTI

  blueteamhacktoolsredteamsecuritysocawesome-listctiiocblueteam-toolsdetectiondetection-engineeringdfirincident-responseiocsirsiemthreat-huntingthreat-intelligenceransomwarermm
  Language:Python 818

• ion-storm / sysmon-config

  Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.

  sysmonthreatintelthreat-huntingnetsecsysinternalslogginggrayloggraylog-plugindfirthreat-intelligencethreat-sharingthreat-analysismitre-attackdigitalforensicsforensic-analysisforensicartifactsforensicssiemsigma-ruleshumio
  Language:PowerShell 788
• opensquat

  atenreiro / opensquat

  The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains and brands.

  blue-teamcybersecuritycybersquattingdomain-namedomain-squattinghomograph-attackinfosecmalwareosintphishingphishing-detectionphishing-domainspythonscannersecurity-toolsthreat-huntingthreat-intelligencetyposquatting
  Language:Python 754