419 Open source projects that are alternatives of or similar to attack-stix-data

MITRE Shield website

ATT&CK Evaluations website (DEPRECATED)

A python module for working with ATT&CK

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/cti-stix-generator

OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

OASIS TC Open Repository: Non-normative schemas and examples for STIX 2

stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats according to the STIX language for intelligence exchange, defined by OASIS Cyber Threat Intelligence (CTI) TC

OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON

Graphical Web interface developed to facilitate the use of security information tools.

Collection of several DDos tools.

OpenCTI connectors

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Authors

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

OpenCTI Python Client

Automated Adversary Emulation Platform

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A curated list of amazingly awesome Cybersecurity datasets

A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.

CyCAT.org API back-end server including crawlers

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

ThePhish: an automated phishing email analysis tool

The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation.

Python toolbox to evaluate graph vulnerability and robustness (CIKM 2021)

Modification of BECTI made by zerty for the JMW Arma 3 server

Refluxion -- MITM WPA attacks tool

Know Your IP: Get location, blacklist status, shodan and censys results, and more.

Tutorial: Uncovering and mitigating side-channel leakage in Intel SGX enclaves

Stamp your code with a trackable digital copyright

Extract all employees from LinkedIn. Especially useful for companies with thousands of employees.

WordPress pentest tool

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

FPGA-based LPC bus sniffing tool for Lattice iCEstick Evaluation Kit

Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)

A multi-layered and multi-tiered Machine Learning security solution, it supports always on detection system, Django REST framework used, equipped with a web-browser extension that uses a REST API call.

学习安全运营的记录 | The knowledge base of security operation

A Highly Accessible and Automated Virtualization Platform for Security Education

🔑 Hash type identifier (CLI & lib)

recon-ng modules for Censys

网络安全课本

CSN09112 Module

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

PassLock is a medium-security password manager that encrypts passwords using Advanced Encryption Standards (AES)

Provides various Windows Server Active Directory (AD) security-focused reports.

Information Security Library

Translate STIX 2 Patterning Queries

基于Threathunting-book基础上完善的狩猎视角红队handbook

ICTCore: Unified Communications Framework for web developers. Communications APIs for voice calls, SMS messaging, Fax communications and Emails

adversarial examples, adversarial malware examples, adversarial malware detection, adversarial deep ensemble, Android malware variants

You didn't think I'd go and leave the blue team out, right?

网络信息安全从业者面试指南

Easily scan files for threats to security and privacy. A Rust library and command line tool. WIP.

SHIELD: Fast, Practical Defense and Vaccination for Deep Learning using JPEG Compression

Malware Sample Sources

Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other URL obfuscation techniques.

All of my recommendations for aspiring engineers in a single place, coming from various areas of interest.