threat-analysis

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

Open source cloud native security observability platform. Linux, K8s, AWS Fargate and more.

Extract and aggregate threat intelligence.

Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.

All-in-One malware analysis tool.

学习安全运营的记录 | The knowledge base of security operation

Collection of Threat Models

Don't Just Search OSINT. Sweep It.

Find phishing kits which use your brand/organization's files and image.

A powerful and user-friendly browser extension that streamlines investigations for security professionals.

Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases

This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant yara rules and ids signatures to detect these indicators.

A toolkit for Security Researchers

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

🚀 This is a collection of hacking🔥 and pentesting 🧐 scripts to help with enumeration, OSINT, exploitation and post exploitation automated scripts to make hacking easier🌠. Have fun!😎

Download pcap files from http://www.malware-traffic-analysis.net/

pretrained BERT model for cyber security text, learned CyberSecurity Knowledge

Hide an IP address in scripts by hex/decimal conversions

Extracting Attack Behavior from Threat Reports