Top 17 cyber-threat-intelligence open source projects

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats according to the STIX language for intelligence exchange, defined by OASIS Cyber Threat Intelligence (CTI) TC

OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON

OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators

A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.

OASIS TC Open Repository: Non-normative schemas and examples for STIX 2

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

STIX data representing MITRE ATT&CK

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

MITRE Shield website

ATT&CK Evaluations website (DEPRECATED)

The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation.

A python module for working with ATT&CK

Unofficial WhatCMS API package

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/cti-stix-generator