199 Open source projects that are alternatives of or similar to ThreatIntelligence

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Best practices in threat intelligence

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

🚌 The missing link to connect open-source threat intelligence tools.

A simple threat hunting tool based on osquery, Salt Open and Cymon API

PatrowlHears - Vulnerability Intelligence Center / Exploits

Defund the Police.

recon-ng modules for Censys

Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.

Python 3 Wrapper for the BinaryEdge API https://www.binaryedge.io/

Threat research and reporting from IronNet's Threat Research Teams

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Extract and aggregate threat intelligence.

Python bindings for Yeti's API

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Utilities for Sysmon

the fastest way to consume threat intelligence.

Bringing you the best of the worst files on the Internet.

Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.

A curses-style interface for automatic takedown notification based on MISP events.

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

CIF v3 -- the fastest way to consume threat intelligence

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

MISP trainings, threat intel and information sharing training materials with source code

Collection of best practices to add OSINT into MISP and/or MISP communities

A helper to run OSINT queries & manage results continuously

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

All-in-one bundle of MISP, TheHive and Cortex

A (nearly) production ready Dockered MISP

Microsoft Sentinel SOC Operations

Don't Just Search OSINT. Sweep It.

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Capture passwords of login attempts on non-existent and disabled accounts.

This repo contains logstash of various honeypots

Malware Sample Sources

The Ultimate OSINT and Threat Hunting Framework

Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings

#ThreatHunting #DFIR #Malware #Detection Mind Maps

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

A toolkit for Security Researchers

Personal compilation of APT malware from whitepaper releases, documents and own research

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Real-time HTTP Intrusion Detection

Clusters and elements to attach to MISP events or attributes (like threat actors)

Sysmon configuration file template with default high-quality event tracing

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

Signature base for my scanner tools

Explore Indicators of Compromise Automatically

Standard-Format Threat Intelligence Feeds

Find phishing kits which use your brand/organization's files and image.

Your Everyday Threat Intelligence

A dashboard for a real-time overview of threat intelligence from MISP instances

Domain name permutation engine written in Go

Threat Hunting queries for various attacks

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Kaspersky's GReAT KLara

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you