- Trellix Threat Reports
- Checkpoint TI Reports
- Anomali Cyber Watch
- https://www.anomali.com/blog Filter by Cyber Watch
- Talos Threat Roundup
- Red Canary Intelligence Insights
- ISC Podcast
- Avertium Threat Reports
- Malware Hunters
- Any Run Malware Trends
- Hatching Blog
- Malpedia
- https://attack.mitre.org/groups/
- https://thedfirreport.com/
- https://github.com/BushidoUK/Breach-Report-Collection
- https://github.com/blackorbird/APT_REPORT
- https://www.crowdstrike.com/adversaries/
- https://learn.microsoft.com/en-us/microsoft-365/security/intelligence/microsoft-threat-actor-naming?view=o365-worldwide
- https://docs.google.com/spreadsheets/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/edit
- https://apt.etda.or.th/cgi-bin/aptgroups.cgi
- https://unit42.paloaltonetworks.com/atoms/
- https://www.ncsc.admin.ch/ncsc/en/home/aktuell/im-fokus/wochenrueckblicke.html
- https://www.ncsc.gov.uk/section/keep-up-to-date/threat-reports
- https://thehackernews.com/
- https://therecord.media/
- https://securelist.com/
- https://thisweekin4n6.com/
- https://github.com/hslatman/awesome-threat-intelligence
- https://github.com/signalscorps/awesome-threat-Intel-blogs
- https://atomicredteam.io/atomics/
- https://github.com/center-for-threat-informed-defense/adversary_emulation_library
- https://scythe.io/threat-thursday
- https://github.com/preludeorg/community
- https://github.com/SecurityRiskAdvisors/VECTR
- https://github.com/facebookincubator/TTPForge
- https://github.com/mitre/caldera
- https://github.com/preludeorg
- https://github.com/mvelazc0/PurpleTeamPlaybook
- https://github.com/mvelazc0/PurpleSharp
- https://github.com/PlumHound/PlumHound
- https://www.thec2matrix.com/
- https://github.com/guardicore/monkey
- https://nsacyber.github.io/unfetter/
- https://github.com/Telefonica/ATTPwn
- https://github.com/uber-common/metta
- https://github.com/NextronSystems/APTSimulator
- https://github.com/alphasoc/flightsim
- https://attack.mitre.org/mitigations/enterprise/
- https://www.cisecurity.org/cis-benchmarks
- https://github.com/atc-project/atc-mitigation
- https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/attack-surface-reduction?view=o365-worldwide
- https://github.com/MicrosoftDocs/windowsserverdocs/tree/main/WindowsServerDocs/security
- Windows Events
- Sysmon
- EDR Telemetry
-
Sigma
-
Elastic
-
Splunk
-
MITRE CAR
-
Microsoft
-
Google
-
Carbon Black
-
Falcon Force
-
Panther Labs
-
TheDFIRReport
-
Joe Sandbox
-
Hayabusa
-
Sublime
-
Others
-
Yara
-
Reversing Labs