threat-intelligence

There are 139 repositories under threat-intelligence topic.

• smicallef / spiderfoot

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  footprintingosintthreatintelpythoninfosecintelligence-gatheringosint-reconnaissancepentestingthreat-intelligencesecurity-toolsinformation-gatheringcybersecurityctiosint-frameworkattacksurfaceosint-toolhackinginformation-securityrecon
  Language:Python 11840

• rshipp / awesome-malware-analysis

  Defund the Police.

  analysis-frameworkautomated-analysisawesomeawesome-listchinesechinese-translationdomain-analysisdrop-icedynamic-analysislistmalware-analysismalware-collectionmalware-researchmalware-samplesnetwork-trafficstatic-analysisthreat-intelligencethreat-sharingthreatintel
  11120

• MISP / MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  mispthreat-sharingthreat-huntingthreatintelmalware-analysisstixinformation-exchangefraud-managementsecuritycticybersecurityfraud-detectionfraud-preventionthreat-analysisinformation-securityinformation-sharingthreat-intelligencethreat-intelligence-platformintelligencethreat-intel
  Language:PHP 5022

• OpenCTI-Platform / opencti

  Open Cyber Threat Intelligence Platform

  cticybercybersecurityintelligenceosintsecuritythreat-intelligence
  Language:TypeScript 4781

• elceef / dnstwist

  Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

  phishingtyposquattingdomainsdnsosintidnfuzzingthreat-huntinghomograph-attackscannerthreat-intelligencehomoglyph
  Language:Python 4584

• devsecops / awesome-devsecops

  An authoritative list of awesome devsecops tools with the help from community experiments and contributions.

  devsecopsthreat-intelligencedevopspodcast
  4415

• fastfire / deepdarkCTI

  Collection of Cyber Threat Intelligence sources from the deep and dark web

  ctithreat-intelligencecyberhunterdarkwebdeepweb
  3866
• IntelOwl

  intelowlproject / IntelOwl

  IntelOwl: manage your Threat Intelligence at scale

  security-toolspythonthreat-intelligenceiocincident-responsecyber-threat-intelligenceenrichmenthoneynetosintosint-pythonthreatintelmalware-analysismalware-analyzerintel-owlthreat-huntinghacktoberfestcyber-securitycybersecuritythreathuntingdfir
  Language:Python 3136
• teler

  kitabisa / teler

  Real-time HTTP Intrusion Detection

  threat-huntingthreat-intelligenceidsintrusion-detection-systemthreat-analyzergogolangintrusion-detectionintrusionthreatthreat-rulesanalyze-logsiocslogslog-analyzerlog
  Language:Go 2974

• Neo23x0 / signature-base

  YARA signature and IOC database for my scanners and tools

  anti-virusdfirhashiocscannersignaturethreat-huntingthreat-intelligenceyarayara-rules
  Language:YARA 2348

• x0rz / phishing_catcher

  Phishing catcher using Certstream

  phishingthreat-intelligencecertificate-transparencyosintthreatintel
  Language:Python 1656

• nshalabi / SysmonTools

  Utilities for Sysmon

  sysmonthreatintelsysinternalsthreat-huntingwindowsnetsecmonitoringloggingthreat-intelligence
  1450

• osintbrazuca / osint-brazuca

  Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

  brasilhackingosintthreat-huntingthreat-intelligencethreatintel
  1398
• Digital-Forensics-Guide

  mikeroyal / Digital-Forensics-Guide

  Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

  digitalforensicsdigitalforensicreadinessforensicssecurityforensics-toolsdigital-forensicsthreat-intelligenceintrusion-detectionmitre-attackdetection-engineeringnetwork-securityoffensive-securitycyber-securityport-scanningsiemalertingforensic-analysisforensics-investigationsosintdfir
  Language:Python 1366

• ninoseki / mitaka

  A browser extension for OSINT search

  chrome-extensionsecuritythreat-intelligenceosint
  Language:TypeScript 1328

• tomchop / malcom

  Malcom - Malware Communications Analyzer

  malwarenetwork-trafficpcapthreat-intelligencemalware-analysisinfosecdfir
  Language:Python 1138

• Te-k / harpoon

  CLI tool for open source and threat intelligence

  osintosint-frameworkthreatintelthreat-intelligence
  Language:Python 1135

• trickest / inventory

  Asset inventory of over 800 public bug bounty programs.

  securitybugbountybugbountytipsinfosecreconnaissancereconpentestinghackingsecurity-toolsred-teampenetration-testingsoftware-securitypentest-toolosintosint-toolosint-resourcesthreat-intelligencebug-bountyfuzzing
  Language:Shell 1128
• ThePhish

  emalderson / ThePhish

  ThePhish: an automated phishing email analysis tool

  emaildetectionmalwarephishingcybersecuritymispthehivethehive4thehive4pyindicators-of-compromisecyberdefensephishing-detectionpythonincident-responsefreedigital-forensicsthreat-intelligencewebappattackscript
  Language:Python 1049

• toolswatch / vFeed

  The Correlated CVE Vulnerability And Threat Intelligence Database API

  cveovalthreat-intelligence-databasepythonvfeedcwecapecscapvulnerability-databasesvulnerability-detectionvulnerability-database-entryvulnerability-identificationthreatintelligence-gatheringexploitsvulnerabilityvulnerability-scannerscommon-vulnerability-exposurethreat-intelligencethreatintel
  Language:Python 923

• alvin-tosh / Malware-Exhibit

  🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have Compiled & analysed by researchers🔥 to understand more about Malware threats😈, analysis and mitigation🧐.

  cryptographycybersecurityencryption-decryptionethical-hackinginfoseckeyloggermalware-analysismalware-researchransomwarestealer-windowsthreat-huntingthreat-intelligencetrojanvirusmalwarenotpetya-malwarepetyaspywarewannacry-ransomwareapt
  Language:Assembly 914

• curated-intel / Ukraine-Cyber-Operations

  Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.

  ukraineosintctithreat-intelligenceiocsthreat-huntingyaramalware
  Language:YARA 907

• osintbrazuca / osint-brazuca-regex

  Repositório criado com intuito de reunir expressões regulares dentro do contexto Brasil

  brasilbrazilhackingosintregexthreat-huntingthreat-intelligence
  893

• ninoseki / mihari

  A query aggregator for OSINT based threat hunting

  threat-huntingthreat-intelligenceosint
  Language:Ruby 828
• Watcher

  thalesgroup-cert / Watcher

  Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

  cybersecuritythreat-huntingdjangoreactjsrss-bridgemispthehivesecurityincident-responsethreat-detectionthreat-intelligencenltkwatchercertificate-transparencycertstreamosintosint-pythonwebappmonitoringphishing
  Language:Python 801

• A3sal0n / CyberThreatHunting

  A collection of resources for Threat Hunters - Sponsored by Falcon Guard

  threat-huntingdfircybersecurityincident-responsethreat-intelligence
  Language:Python 796

• InQuest / ThreatIngestor

  Extract and aggregate threat intelligence.

  iocindicators-of-compromisethreatintelthreat-intelligenceosintdfirmalware-researchsecurity-toolsthreat-sharingthreat-feedsthreat-huntingmispfraud-detectionthreat-analysisintelligence-gatheringthreat-intelligence-platformyarasoar
  Language:Python 790
• DaProfiler

  daprofiler / DaProfiler

  DaProfiler is an OSINT tool allowing you to collect certain information about yourself in order to rectify by rgpd requests the traces you may have left on the net. DaProfiler is indeed able to recover: Addresses, Social media accounts, e-mail addresses, mobile / landline number, jobs.

  osintsocial-mediasocial-networkinstagramemailfacebookskypepythonosint-pythonosint-toolsthreat-intelligencetracelabsintelligenceinformation-gatheringemailsfranceperson-search
  Language:Python 784

• ion-storm / sysmon-config

  Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.

  sysmonthreatintelthreat-huntingnetsecsysinternalslogginggrayloggraylog-plugindfirthreat-intelligencethreat-sharingthreat-analysismitre-attackdigitalforensicsforensic-analysisforensicartifactsforensicssiemsigma-ruleshumio
  Language:PowerShell 752

• KasperskyLab / klara

  Kaspersky's GReAT KLara

  klarathreat-huntingthreat-intelligenceyara-rules
  Language:PHP 680
• opensquat

  atenreiro / opensquat

  The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains.

  blue-teamcybersecuritycybersquattingdomain-namedomain-squattinghomograph-attackinfosecmalwareosintphishingphishing-detectionphishing-domainspythonscannersecurity-toolsthreat-huntingthreat-intelligencetyposquatting
  Language:Python 651

• Patrowl / PatrowlManager

  PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

  automationorchestrationsecopspatrowlincident-responseapisecurity-toolsvulnerability-managementsecurity-automationsecurity-scannervulnerability-scannersvulnerability-detectionthreat-intelligencethreat-huntingiocthehivevulnerabilitiesscans
  Language:HTML 610

• t4d / StalkPhish

  StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

  phishingphishing-sitesthreat-intelligencethreat-huntingthreatintelfraud-detectionosintinvestigationphishing-kitscammersinfosec
  Language:Python 604

• advanced-threat-research / Yara-Rules

  Repository of YARA rules made by Trellix ATR Team

  yaraiocsthreat-huntingthreat-intelligence
  Language:YARA 538

• ciscocsirt / GOSINT

  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).

  threat-intelligenceiocsecuritygolang
  Language:JavaScript 533

• matamorphosis / Scrummage

  The Ultimate OSINT and Threat Hunting Framework

  osintthreat-intelligencethreat-huntingopen-source-intelligenceweb-applicationcyber-securitydashboard
  Language:Python 488