#Threatintel
Showing 56 of 56 repositories tagged #threatintel, ranked by stars
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Defund the Police.
The recursive internet scanner for hackers. π§‘
Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
IntelOwl: manage your Threat Intelligence at scale
RepositΓ³rio criado com intuito de reunir informaΓ§Γ΅es, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
A resource containing all the tools each ransomware gangs uses
The Correlated CVE Vulnerability And Threat Intelligence Database API
Extract and aggregate threat intelligence.
Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Bringing you the best of the worst files on the Internet.
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
This repository contains indicators of compromise (IOCs) of our various investigations.
Domain name permutation engine written in Go
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
Intelligence and Reconnaissance Package/Bundle installer.
This repo contains IOC, malware and malware analysis associated with Public cloud
A collection of malware families and malware samples which use the Rust programming language.
A collection & lists of intel and usernames scraped from various cybercrime sources & forums. DarkForums, HackForums, Patched, Cracked, BreachForums, OGUser, XSS, Dread, & more
A live dashboard for a real-time overview of threat intelligence from MISP instances
Threat Intel Platform for T-POTs
Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/
A collection of intelligence about Log4Shell and its exploitation activity.
This repo contains logstash of various honeypots
Malicious Extension Database
Open Source Platform for storing, organizing, and searching documents related to cyber threats
Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports
PatrowlHears - Vulnerability Intelligence Center / Exploits
Curated list of awesome cybersecurity companies and solutions.
internet monitoring osint telegram bot for windows
Dictionary of CTI-related acronyms, terms, and jargon
This repository contains Malicious Indicator of Compromise (IOC) blocklist for MISP, firewall which is vital for cybersecurity professionals to enhance threat detection and improve incident response capabilities.
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
A C# based tool for analysing malicious OneNote documents
IntelOwl's Web Interface. Built with Angular 10.
Further investigation in to APT campaigns disclosed by private security firms and security agencies
Golang-based subdomain miner leveraging certificate transparency logs
Check IP or Domain reputation against open-source Blacklists.
Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping
A Lambda-powered Security Orchestration framework for AWS GuardDuty
PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
Cryptographic Dataset Generation & Modelling Framework
Quick SOC L1 ticket structure
LeakCheck API
recon-ng modules for Censys
Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.
FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Cybersecurity lists of TLDs, domains and URLs for threat hunting and posture policy (warn or block)
Hashes of infamous malware
Defanger is a Notepad++ plugin that defangs/refangs malicious IOCs.
Defund the Police. With repository starsβ and forksπ΄
A curated collection of YARA rules and structured JSON reports designed to identify and analyze various malware builder variants, for educational and research purposes only.
Practice CTI Quiz