IOCs that appear in this repository are meant to be long-lasting indicators of compromise.
ttpnav is a Python library that simplifies navigating MITRE ATT&CK data, enabling users to effortlessly retrieve comprehensive information about specific techniques with a single query. It provides details on mitigations, detections, procedure examples, groups, and related software/tools, streamlining cybersecurity analysis.
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
This repository contains indicators of compromise (IOCs) of our various investigations.
A reverse search tool for OSINT (Open Source Intelligence) gathering & facial recognition via Google Custom Search & Google Vision API's.
“I clicked on something and it all disappeared,” is a common fear of those who use cryptocurrency for the first time. This article is about what not to do - we will tell you the 10 most common ways to lose your crypto.
Discover an awesome compilation of tools, libraries, and resources for robust security. From network to web security, find everything you need to enhance your security expertise.
BlackBerry Threat Research & Intelligence
Synapse-Onyphe is a Rapid Power-Up for the Onyphe platform
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
A Storm service that facilitates Yara scanning from a Synapse Cortex
Repositório criado para compartilhar ferramentas utilizadas para caça a ameaças (CTI) sobre atores de ameaças e enriquecimento de IOCs coletadas destes.
A new way for you to structure your threat content.
Simplifies the process of gathering information about Indicators of Compromise
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
A collection of Go tools I make while I learn a little about GoLang.
This script will automatically set up an OSINT workstation starting from a Ubuntu OS.
Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
Actionable analytics designed to combat threats
Add a description, image, and links to the threatintelligence topic page so that developers can more easily learn about it.
To associate your repository with the threatintelligence topic, visit your repo's landing page and select "manage topics."