430 Open source projects that are alternatives of or similar to connectors

CyCAT.org API back-end server including crawlers

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

⚔️MITRE ATT&CK Machinations in R

A python module for working with ATT&CK

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Authors

ThePhish: an automated phishing email analysis tool

OpenCTI Python Client

MITRE Shield website

ATT&CK Evaluations website (DEPRECATED)

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

STIX data representing MITRE ATT&CK

intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; including but not limited to CTI, MISP Threat Sharing, STIX 2.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

The principal objectives and outputs of this project are the creation and dissemination of an extension to the VERIS schema incorporating ATT&CK mappings and associated usage documentation.

Mapping NSM rules to MITRE ATT&CK

Elemental - An ATT&CK Threat Library

Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Scripts and a (future) library to improve users' interactions with the ATT&CK content

Shuffle: A general purpose security automation platform platform. We focus on accessibility for all.

Collection of best practices to add OSINT into MISP and/or MISP communities

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

A toolkit for Security Researchers

Threat Hunting queries for various attacks

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

internet monitoring osint telegram bot for windows

Don't Just Search OSINT. Sweep It.

Automated Adversary Emulation Platform

A dashboard for a real-time overview of threat intelligence from MISP instances

MITRE ATT&CK Website

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.

Bringing you the best of the worst files on the Internet.

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

Malware Sample Sources

A (nearly) production ready Dockered MISP

recon-ng modules for Censys

PatrowlHears - Vulnerability Intelligence Center / Exploits

Explore Indicators of Compromise Automatically

Web app that provides basic navigation and annotation of ATT&CK matrices

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

Best practices in threat intelligence

A curses-style interface for automatic takedown notification based on MISP events.

A platform to develop, run and administer CTF competitions. The online echoCTF.RED platform user interfaces and codebase

Argus Advanced Remote & Local Keylogger For macOS and Windows

🛡️ Awesome Cloud Security Resources ⚔️

Repository for threat hunting and detection queries, tools, etc.

A Lambda-powered Security Orchestration framework for AWS GuardDuty

基于Threathunting-book基础上完善的狩猎视角红队handbook

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…

Threat research and reporting from IronNet's Threat Research Teams

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Robot Hacking Manual (RHM). From robotics to cybersecurity. Papers, notes and writeups from a journey into robot cybersecurity.

No description or website provided.