threatintel
There are 224 repositories under threatintel topic.
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
rshipp/awesome-malware-analysis
Defund the Police.
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
cowrie/cowrie
Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
intelowlproject/IntelOwl
IntelOwl: manage your Threat Intelligence at scale
x0rz/phishing_catcher
Phishing catcher using Certstream
yeti-platform/yeti
Your Everyday Threat Intelligence
nshalabi/SysmonTools
Utilities for Sysmon
osintbrazuca/osint-brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Te-k/harpoon
CLI tool for open source and threat intelligence
wssheldon/osintui
OSINT from your favorite services in a friendly terminal user interface - integrations for Virustotal, Shodan, and Censys
toolswatch/vFeed
The Correlated CVE Vulnerability And Threat Intelligence Database API
InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
Hack-with-Github/Powerful-Plugins
Powerful plugins and add-ons for hackers
ion-storm/sysmon-config
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
t4d/StalkPhish
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
InQuest/iocextract
Defanged Indicator of Compromise (IOC) Extractor.
BushidoUK/Open-source-tools-for-CTI
Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
mxm0z/awesome-intelligence-writing
Awesome collection of great and useful resources concerning intelligence writing such as manuals/guides, standards, books, and articles
drb-ra/C2IntelFeeds
Automatically created C2 Feeds
MISP/PyMISP
Python library using the MISP Rest API
MISP/misp-training
MISP trainings, threat intel and information sharing training materials with source code
cloudtracer/ThreatPinchLookup
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
CriticalPathSecurity/Zeek-Intelligence-Feeds
Zeek-Formatted Threat Intelligence Feeds
HuntDownProject/HEDnsExtractor
A suite for hunting suspicious targets, expose domains and phishing discovery
MalwareSamples/Malware-Feed
Bringing you the best of the worst files on the Internet.
opencybersecurityalliance/kestrel-lang
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
RansomLook/RansomLook
Yet another Ransomware gang tracker
netevert/dnsmorph
Domain name permutation engine written in Go
tenzir/threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
NullArray/IntRec-Pack
Intelligence and Reconnaissance Package/Bundle installer.
unknownhad/CloudIntel
This repo contains IOC, malware and malware analysis associated with Public cloud
opencybersecurityalliance/stix-shifter
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
prodaft/malware-ioc
This repository contains indicators of compromise (IOCs) of our various investigations.
MISP/misp-dashboard
A live dashboard for a real-time overview of threat intelligence from MISP instances