GitHub topics: threatintel
cowrie/cowrie
Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/
Language: Python - Size: 10.2 MB - Last synced at: about 2 hours ago - Pushed at: about 2 hours ago - Stars: 5,532 - Forks: 935
spmedia/Crypto-Scam-and-Crypto-Phishing-Threat-Intel-Feed
A fresh feed of crypto phishing and crypto scam websites. Automatically updated daily/frequently.
Size: 457 KB - Last synced at: about 12 hours ago - Pushed at: about 13 hours ago - Stars: 23 - Forks: 0
rshipp/awesome-malware-analysis
Defund the Police.
Size: 644 KB - Last synced at: about 12 hours ago - Pushed at: 11 months ago - Stars: 12,551 - Forks: 2,596
ivre/obsidian-ivre-plugin
Grabs data from IVRE and brings it into Obsidian notes
Language: TypeScript - Size: 2.81 MB - Last synced at: about 17 hours ago - Pushed at: about 18 hours ago - Stars: 33 - Forks: 1
mthcht/ThreatIntel-Reports
Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports
Language: Python - Size: 1.79 GB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 113 - Forks: 11
CriticalPathSecurity/Public-Intelligence-Feeds
Standard-Format Threat Intelligence Feeds
Size: 5.73 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 112 - Forks: 19
CriticalPathSecurity/Zeek-Intelligence-Feeds
Zeek-Formatted Threat Intelligence Feeds
Language: Zeek - Size: 24.2 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 361 - Forks: 46
rodanmaharjan/ThreatIntelligence
Malicious IP source.
Language: Python - Size: 119 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 90 - Forks: 13
drb-ra/C2IntelFeeds
Automatically created C2 Feeds
Language: REXX - Size: 6.4 GB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 608 - Forks: 49
spmedia/PhishingSecLists
To be used with tools like GoBuster & DirBuster but these lists are specifically tailored and designed for scanning phishing <>< landing pages and other malicious or sketch af financial/crypto fraud websites.
Size: 648 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 44 - Forks: 6
thequietlife/CTI-101
📓 Cyber Threat Intelligence 101
Size: 45.8 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 0 - Forks: 0
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Language: Python - Size: 16 MB - Last synced at: 4 days ago - Pushed at: 5 months ago - Stars: 14,315 - Forks: 2,424
osintbrazuca/osint-brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Size: 1.18 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 1,817 - Forks: 245
RansomLook/RansomLook
Yet another Ransomware gang tracker
Language: Python - Size: 9.24 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 423 - Forks: 74
intelowlproject/IntelOwl
IntelOwl: manage your Threat Intelligence at scale
Language: Python - Size: 145 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 4,119 - Forks: 488
MISP/misp-training
MISP trainings, threat intel and information sharing training materials with source code
Language: TeX - Size: 229 MB - Last synced at: 4 days ago - Pushed at: 6 days ago - Stars: 407 - Forks: 91
blacklanternsecurity/bbot
The recursive internet scanner for hackers. 🧡
Language: Python - Size: 49.9 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 8,401 - Forks: 653
opencybersecurityalliance/kestrel-lang
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
Language: Python - Size: 3.54 MB - Last synced at: about 7 hours ago - Pushed at: 8 months ago - Stars: 312 - Forks: 50
00xNetrunner/awesome-malware-analysis
Improved awesome-malware-analysis by rship and removed all the dumb poltical stuff
Size: 0 Bytes - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 0 - Forks: 0
BushidoUK/Ransomware-Tool-Matrix
A resource containing all the tools each ransomware gangs uses
Size: 707 KB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 1,014 - Forks: 113
BadSamuraiDev/bs-lists
Cybersecurity lists of TLDs, domains and URLs for threat hunting and posture policy (warn or block)
Size: 26.4 KB - Last synced at: 8 days ago - Pushed at: 8 days ago - Stars: 1 - Forks: 0
MISP/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Language: PHP - Size: 154 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 5,668 - Forks: 1,452
yeti-platform/yeti
Your Everyday Threat Intelligence
Language: Python - Size: 34.7 MB - Last synced at: 10 days ago - Pushed at: 10 days ago - Stars: 1,846 - Forks: 299
prodaft/malware-ioc
This repository contains indicators of compromise (IOCs) of our various investigations.
Language: Python - Size: 20.1 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 248 - Forks: 24
flowintel/flowintel
An open source platform to support analysts to organise their case and tasks
Language: JavaScript - Size: 9.45 MB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 71 - Forks: 10
intelowlproject/GreedyBear
Threat Intel Platform for T-POTs
Language: Python - Size: 3.76 MB - Last synced at: 4 days ago - Pushed at: 5 days ago - Stars: 147 - Forks: 38
MISP/PyMISP
Python library using the MISP Rest API
Language: Python - Size: 8.59 MB - Last synced at: 4 days ago - Pushed at: about 1 month ago - Stars: 461 - Forks: 284
mxm0z/awesome-intelligence-writing
Collection of awesome resources on intelligence writing, including manuals/guides, standards, books, tranings, articles, videos, etc
Size: 34.5 MB - Last synced at: 6 days ago - Pushed at: 10 months ago - Stars: 545 - Forks: 61
Annsec/awesome-cybersecurity
Curated list of awesome cybersecurity companies and solutions.
Size: 32.2 KB - Last synced at: about 19 hours ago - Pushed at: 11 months ago - Stars: 156 - Forks: 24
opencybersecurityalliance/stix-shifter
This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return results as STIX Observations.
Language: Python - Size: 44.4 MB - Last synced at: 10 days ago - Pushed at: about 1 month ago - Stars: 246 - Forks: 230
JMousqueton/ransomware.live
🏴☠️💰 Another Ransomware gang tracker
Language: Python - Size: 2.96 GB - Last synced at: 13 days ago - Pushed at: 13 days ago - Stars: 193 - Forks: 37
arachne-threat-intel/spindle
Tracking information about cyber threat actors
Language: Python - Size: 244 KB - Last synced at: about 13 hours ago - Pushed at: about 14 hours ago - Stars: 3 - Forks: 0
arachne-threat-intel/tracery Fork of searx/searx
Privacy-respecting metasearch engine
Language: Python - Size: 15.8 MB - Last synced at: 16 days ago - Pushed at: 16 days ago - Stars: 5 - Forks: 0
arachne-threat-intel/thread Fork of mitre-attack/tram
Thread is a tool for analysts to map finished reports and articles to MITRE ATT&CK®.
Language: Python - Size: 20.2 MB - Last synced at: 16 days ago - Pushed at: 16 days ago - Stars: 5 - Forks: 4
InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
Language: Python - Size: 1.65 MB - Last synced at: 21 days ago - Pushed at: over 1 year ago - Stars: 859 - Forks: 137
JMousqueton/api.ransomware.live
The Ransomware.live API Server is a Flask-based web application that provides endpoints to query and retrieve data related to ransomware posts and cyberattacks. This API serves as a backend for Ransomware.live, a service that aggregates and displays information about recent ransomware incidents and groups.
Language: Python - Size: 191 KB - Last synced at: 17 days ago - Pushed at: 7 months ago - Stars: 21 - Forks: 8
ioc-fang/ioc-fanger
Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Language: Python - Size: 764 KB - Last synced at: about 3 hours ago - Pushed at: over 1 year ago - Stars: 61 - Forks: 11
Correia-jpv/fucking-awesome-malware-analysis
Defund the Police. With repository stars⭐ and forks🍴
Size: 535 KB - Last synced at: 14 days ago - Pushed at: 27 days ago - Stars: 17 - Forks: 2
spmedia/CTI-Stuffs
A collection of CTI stuffs - intel scraped from various cybercrime sources
Size: 360 KB - Last synced at: 29 days ago - Pushed at: 29 days ago - Stars: 0 - Forks: 0
InQuest/iocextract
Defanged Indicator of Compromise (IOC) Extractor.
Language: Python - Size: 777 KB - Last synced at: 30 days ago - Pushed at: 9 months ago - Stars: 526 - Forks: 92
nshalabi/SysmonTools
Utilities for Sysmon
Size: 1.37 GB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 1,512 - Forks: 205
wssheldon/osintui
OSINT from your favorite services in a friendly terminal user interface - integrations for Virustotal, Shodan, and Censys
Language: Rust - Size: 25.6 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1,011 - Forks: 63
x0rz/phishing_catcher
Phishing catcher using Certstream
Language: Python - Size: 66.4 KB - Last synced at: 30 days ago - Pushed at: 9 months ago - Stars: 1,735 - Forks: 357
cloudtracer/ThreatPinchLookup
Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension
Language: HTML - Size: 12 MB - Last synced at: about 1 month ago - Pushed at: over 6 years ago - Stars: 370 - Forks: 80
netevert/dnsmorph
Domain name permutation engine written in Go
Language: Go - Size: 203 MB - Last synced at: about 1 month ago - Pushed at: almost 2 years ago - Stars: 266 - Forks: 43
SOsintOps/Argos
This script will automatically set up an OSINT workstation starting from a Ubuntu OS.
Language: Shell - Size: 120 MB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 143 - Forks: 21
NullArray/IntRec-Pack
Intelligence and Reconnaissance Package/Bundle installer.
Language: Shell - Size: 124 KB - Last synced at: about 1 month ago - Pushed at: over 4 years ago - Stars: 237 - Forks: 79
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
Size: 464 KB - Last synced at: about 1 month ago - Pushed at: 10 months ago - Stars: 4,954 - Forks: 1,740
securedbyjc/EDS_Postgres_AuditLogs
PostgreSQL project simulating a security audit log for Eagle Defense Systems LLC (EDS)
Size: 6.84 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0
franckferman/CassandraCTI
🔮 Collect, process, and automatically distribute Cyber Threat Intelligence from RSS feeds across multiple platforms.
Size: 151 KB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 5 - Forks: 0
Patrowl/PatrowlHears
PatrowlHears - Vulnerability Intelligence Center / Exploits
Language: Python - Size: 473 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 163 - Forks: 54
Hack-with-Github/Powerful-Plugins
Powerful plugins and add-ons for hackers
Size: 47.9 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 853 - Forks: 257
MISP/misp-dashboard
A live dashboard for a real-time overview of threat intelligence from MISP instances
Language: JavaScript - Size: 5.09 MB - Last synced at: 4 days ago - Pushed at: almost 2 years ago - Stars: 202 - Forks: 63
Te-k/harpoon
CLI tool for open source and threat intelligence
Language: Python - Size: 811 KB - Last synced at: 29 days ago - Pushed at: 2 months ago - Stars: 1,202 - Forks: 181
toolswatch/vFeed 📦
The Correlated CVE Vulnerability And Threat Intelligence Database API
Language: Python - Size: 542 KB - Last synced at: about 1 month ago - Pushed at: almost 4 years ago - Stars: 941 - Forks: 243
Te-k/pysafebrowsing
Python 3 Google Safe Browsing library
Language: Python - Size: 28.3 KB - Last synced at: about 8 hours ago - Pushed at: about 2 months ago - Stars: 25 - Forks: 8
tenzir/threatbus 📦
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
Language: Python - Size: 889 KB - Last synced at: 17 days ago - Pushed at: about 2 years ago - Stars: 261 - Forks: 16
KasperskyLab/threat-intelligence
A repository dedicated to deliver a comprehensive set of tools for integration and convenient use of Kaspersky Threat Intelligence services
Language: Python - Size: 82 KB - Last synced at: 29 days ago - Pushed at: 6 months ago - Stars: 14 - Forks: 2
LeakCheck/leakcheck-api
LeakCheck API
Language: Python - Size: 43 KB - Last synced at: 24 days ago - Pushed at: 7 months ago - Stars: 30 - Forks: 6
jakewarren/defang
Defangs and refangs malicious IOCs
Language: Go - Size: 121 KB - Last synced at: 1 day ago - Pushed at: about 2 years ago - Stars: 8 - Forks: 0
an-sh7/Correlated-Threat-Analysis
This Python application provides a graphical user interface (GUI) for performing correlated threat analysis using PCAP files and optional IDS/NDR alert logs.
Language: Python - Size: 14.5 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0
gbikram/ThreatIntelRAG
Experimental RAG that consumes Cyber Security articles via RSS
Language: Jupyter Notebook - Size: 41.1 MB - Last synced at: about 1 month ago - Pushed at: 5 months ago - Stars: 3 - Forks: 2
CrowdStrike/MISP-tools
Import CrowdStrike Threat Intelligence into your instance of MISP
Language: Python - Size: 7.34 MB - Last synced at: about 2 months ago - Pushed at: 2 months ago - Stars: 44 - Forks: 11
censys/censys-recon-ng
recon-ng modules for Censys
Language: Python - Size: 67.4 KB - Last synced at: 19 days ago - Pushed at: over 1 year ago - Stars: 37 - Forks: 15
NullArray/Mimir
OSINT Threat Intel Interface - CLI for HoneyDB
Language: Python - Size: 34.2 KB - Last synced at: 29 days ago - Pushed at: about 6 years ago - Stars: 117 - Forks: 51
thequietlife/malware-analysis
🦠 Notes on learning malware analysis
Size: 7.31 MB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0
elvidence/MISP
Enhancing MISP (Malware Information Sharing Platform & Threat Sharing)
Language: Python - Size: 93.8 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 2 - Forks: 0
fhightower/ioc-finder
Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/
Language: Python - Size: 1.35 MB - Last synced at: 22 days ago - Pushed at: over 1 year ago - Stars: 164 - Forks: 42
Viralmaniar/MurMurHash
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
Language: Python - Size: 16.6 KB - Last synced at: 17 days ago - Pushed at: over 1 year ago - Stars: 117 - Forks: 18
frknaykc/Database-Dragon
A comprehensive repository for malware analysis and threat intelligence, including Cobalt Strike Beacon configurations, YARA rules, IOCs, Suricata rules, and malware samples to support cybersecurity efforts.
Language: YARA - Size: 171 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 6 - Forks: 0
eclecticiq/cabby
TAXII client implementation from EclecticIQ
Language: Python - Size: 385 KB - Last synced at: 26 days ago - Pushed at: over 3 years ago - Stars: 99 - Forks: 21
a3r0id/mass-scanning-tools 📦
Various scripts for mass-scanning engagements of world-facing services.
Language: Python - Size: 129 KB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 22 - Forks: 2
Graylog2/graylog-plugin-threatintel
Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
Language: Java - Size: 1.68 MB - Last synced at: 11 days ago - Pushed at: about 1 year ago - Stars: 153 - Forks: 19
intelowlproject/IntelOwl-ng 📦
IntelOwl's Web Interface. Built with Angular 10.
Language: TypeScript - Size: 2.62 MB - Last synced at: 4 days ago - Pushed at: over 2 years ago - Stars: 88 - Forks: 16
PAST2212/domainthreat
Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping
Language: Python - Size: 1.44 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 46 - Forks: 13
wisepythagoras/honeyshell
An SSH honeypot written entirely in Go.
Language: Go - Size: 104 KB - Last synced at: 25 days ago - Pushed at: 4 months ago - Stars: 13 - Forks: 2
0rx1/DomainMon
Simple Domain Monitoring Dashboard
Language: Go - Size: 2.38 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 1 - Forks: 0
gbikram/ThreatTrack
Script parses through a CSV file containing queries for various online data sources that scrape and collect metadata on URLs, IPs, Domains and Files. The queries are run against the respective data sources and the resulting observables and uploaded to a given AlienVault OTX account for tracking.
Language: Python - Size: 30.3 KB - Last synced at: about 1 month ago - Pushed at: about 1 year ago - Stars: 2 - Forks: 0
csalab-id/thestrack
The shadow tracker - Environment for tracking the shadow on the backdoor activity (Threat Intelligence Tools)
Language: Dockerfile - Size: 82 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 1 - Forks: 0
HuntDownProject/HEDnsExtractor
A suite for hunting suspicious targets, expose domains and phishing discovery
Language: Go - Size: 3.11 MB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 333 - Forks: 45
eclecticiq/OpenTAXII
TAXII server implementation in Python from EclecticIQ
Language: Python - Size: 1.44 MB - Last synced at: 2 months ago - Pushed at: about 1 year ago - Stars: 194 - Forks: 95
ninoseki/iocingestor
An extendable tool to extract and aggregate IoCs from threat feeds
Language: Python - Size: 314 KB - Last synced at: 26 days ago - Pushed at: over 1 year ago - Stars: 33 - Forks: 5
umair9747/Staticot
A BASH script to automate simple tasks related to static malware analysis
Language: Shell - Size: 10.7 KB - Last synced at: about 1 month ago - Pushed at: over 4 years ago - Stars: 12 - Forks: 4
Deilis/py-mitre-attack-scraper
This project provides tools to scrape and manage data from the MITRE ATT&CK framework, specifically designed to scrape, search, and display information about cyber threat groups listed on the MITRE ATT&CK website.
Language: Python - Size: 41 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0
t4d/StalkPhish 📦
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
Language: Python - Size: 176 KB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 626 - Forks: 81
BushidoUK/CTI-Lexicon
Dictionary of CTI-related acronyms, terms, and jargon
Size: 219 KB - Last synced at: 6 months ago - Pushed at: over 1 year ago - Stars: 136 - Forks: 11
BushidoUK/Open-source-tools-for-CTI
Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers
Size: 375 KB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 595 - Forks: 104
visualbasic6/chatter 📦
internet monitoring osint telegram bot for windows
Size: 38.3 MB - Last synced at: 6 months ago - Pushed at: about 2 years ago - Stars: 146 - Forks: 18
curated-intel/Log4Shell-IOCs
A collection of intelligence about Log4Shell and its exploitation activity.
Language: Python - Size: 12.9 MB - Last synced at: 6 months ago - Pushed at: about 3 years ago - Stars: 181 - Forks: 37
csirtgadgets/bearded-avenger 📦
CIF v3 -- the fastest way to consume threat intelligence
Language: Python - Size: 1.41 MB - Last synced at: 6 months ago - Pushed at: about 2 years ago - Stars: 184 - Forks: 51
csirtgadgets/csirtg-smrt-v1 📦
the fastest way to consume threat intelligence.
Language: Python - Size: 1.03 MB - Last synced at: 23 days ago - Pushed at: about 2 years ago - Stars: 29 - Forks: 20
MISP/mail_to_misp
Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
Language: Python - Size: 871 KB - Last synced at: 4 days ago - Pushed at: over 1 year ago - Stars: 69 - Forks: 25
unknownhad/CloudIntel
This repo contains IOC, malware and malware analysis associated with Public cloud
Size: 12.5 MB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 244 - Forks: 21
Te-k/pybinaryedge
Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/
Language: Python - Size: 29.3 KB - Last synced at: 29 days ago - Pushed at: almost 2 years ago - Stars: 19 - Forks: 6
rstcloud/rstapi-python
Python 3 library for using the RST Cloud API (threat intelligence)
Language: Python - Size: 13.7 KB - Last synced at: 12 days ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0
venator-intel/HunterOS
The Intelligence Analyst's Workstation
Language: HTML - Size: 8.34 MB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 3 - Forks: 0
JungleDragon/ThreatAnalysis
Threat analyses I have done involving phishing, malware, social engineering, etc.
Size: 58.6 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0
TheHive-Project/DigitalShadows2TH
DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
Language: Python - Size: 170 KB - Last synced at: about 1 month ago - Pushed at: almost 6 years ago - Stars: 35 - Forks: 11
brycampbell/YARA
Language: YARA - Size: 12.7 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 1 - Forks: 0
PAST2212/certthreat
CERT Transparency Log Monitoring for brand names and mailing domain names to detect phishing and brand impersonations
Language: Python - Size: 41 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 9 - Forks: 1