threatintel
There are 242 repositories under threatintel topic.
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
rshipp/awesome-malware-analysis
Defund the Police.
blacklanternsecurity/bbot
A recursive internet scanner for hackers.
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cowrie/cowrie
Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
intelowlproject/IntelOwl
IntelOwl: manage your Threat Intelligence at scale
yeti-platform/yeti
Your Everyday Threat Intelligence
x0rz/phishing_catcher
Phishing catcher using Certstream
osintbrazuca/osint-brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
nshalabi/SysmonTools
Utilities for Sysmon
Te-k/harpoon
CLI tool for open source and threat intelligence
wssheldon/osintui
OSINT from your favorite services in a friendly terminal user interface - integrations for Virustotal, Shodan, and Censys
toolswatch/vFeed
The Correlated CVE Vulnerability And Threat Intelligence Database API
Hack-with-Github/Powerful-Plugins
Powerful plugins and add-ons for hackers
InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
ion-storm/sysmon-config
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
BushidoUK/Ransomware-Tool-Matrix
A resource containing all the tools each ransomware gangs uses
t4d/StalkPhish
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
BushidoUK/Open-source-tools-for-CTI
Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
drb-ra/C2IntelFeeds
Automatically created C2 Feeds
mxm0z/awesome-intelligence-writing
Collection of awesome resources on intelligence writing, including manuals/guides, standards, books, tranings, articles, videos, etc
InQuest/iocextract
Defanged Indicator of Compromise (IOC) Extractor.
MISP/PyMISP
Python library using the MISP Rest API
MISP/misp-training
MISP trainings, threat intel and information sharing training materials with source code
cloudtracer/ThreatPinchLookup
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
CriticalPathSecurity/Zeek-Intelligence-Feeds
Zeek-Formatted Threat Intelligence Feeds
RansomLook/RansomLook
Yet another Ransomware gang tracker
HuntDownProject/HEDnsExtractor
A suite for hunting suspicious targets, expose domains and phishing discovery
opencybersecurityalliance/kestrel-lang
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
MalwareSamples/Malware-Feed
Bringing you the best of the worst files on the Internet.
netevert/dnsmorph
Domain name permutation engine written in Go
tenzir/threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
unknownhad/CloudIntel
This repo contains IOC, malware and malware analysis associated with Public cloud
NullArray/IntRec-Pack
Intelligence and Reconnaissance Package/Bundle installer.
opencybersecurityalliance/stix-shifter
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.