threat-analysis

Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.

Updated Nov 5, 2023
PowerShell

InQuest / ThreatIngestor

Star

Extract and aggregate threat intelligence.

ioc osint dfir threat-hunting malware-research misp threat-sharing threatintel yara threat-analysis fraud-detection intelligence-gathering security-tools threat-intelligence soar indicators-of-compromise threat-feeds threat-intelligence-platform

Updated Jan 31, 2024
Python

TalEliyahu / Threat_Model_Examples

Star

A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigating security risks.

threat cybersecurity threat-modeling risk-assessment threat-analysis

Updated Jun 12, 2025

ecstatic-nobel / OSweep

Star

Don't Just Search OSINT. Sweep It.

python osint splunk cybersecurity certificate-transparency ransomware threat-hunting malware-analysis scanners cybercrime threat-analysis pivoting threat-intelligence urlscan-io threatcrowd urlhaus

Updated Jan 26, 2021
Python

t4d / PhishingKitHunter

Star

Find phishing kits which use your brand/organization's files and image.

security phishing threat-hunting fraud-prevention phishing-attacks threat-analysis fraud-detection threat-intelligence phishing-sites

Updated Jan 21, 2019
Python

zdhenard42 / SOC-Multitool

Star

A powerful and user-friendly browser extension that streamlines investigations for security professionals.

chrome-extension cybersecurity browser-extension threat-hunting threat-analysis threat-intelligence

Updated May 13, 2025
JavaScript

alvin-tosh / Infosec-and-Hacking-Scripts

Star

🚀 This is a collection of hacking🔥 and pentesting 🧐 scripts to help with enumeration, OSINT, exploitation and post exploitation automated scripts to make hacking easier🌠. Have fun!😎

Updated Mar 23, 2024
Python

utmstack / UTMStack

Star

Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.

Updated Jul 16, 2025
Java

jackaduma / SecBERT

Star

pretrained BERT model for cyber security text, learned CyberSecurity Knowledge

Updated Apr 28, 2023
Python

ecstatic-nobel / Analyst-Arsenal

Star

A toolkit for Security Researchers

python osint scanner cybersecurity certificate-transparency infosec threat-hunting malware-analysis webshell threat-analysis threat-intelligence certstream threat-detection opendir defaced

Updated Sep 2, 2019
Python

ethansilvas / google-cybersecurity

Star

Projects, notes, and write-ups I have done while completing the Google Cybersecurity Certificate

python linux sql cybersecurity threat-analysis risk-management

Updated Oct 3, 2023
Jupyter Notebook

jh00nbr / Phishruffus

Star

Intelligent threat hunter and phishing servers

python phishing threat-analysis threat-intelligence phishing-servers

Updated Jan 20, 2019
Python

tatsuiman / malware-traffic-analysis.net

Star

Download pcap files from http://www.malware-traffic-analysis.net/

pcap samples pcap-files threat-analysis

Updated Jan 16, 2018

CERTCC / Vulnerability-Data-Archive

Star

With the hope that someone finds the data useful, we used to periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

threat cert vulnerability threatintel cve threat-analysis threat-intelligence vulnerability-report vulnerability-data vulnerability-notes

Updated May 14, 2024

401trg / detections

Star

This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant yara rules and ids signatures to detect these indicators.

ioc verizon threat-hunting indicators threat-analysis indicators-of-compromise 401trg protectwise

Updated Apr 14, 2021
Python

Improve this page

Add a description, image, and links to the threat-analysis topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the threat-analysis topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

threat-analysis

Here are 105 public repositories matching this topic...

MISP / MISP

cowrie / cowrie

deepfence / ThreatMapper

CYB3RMX / Qu1cksc0pe

satan1a / TheRoadOfSO

ion-storm / sysmon-config

InQuest / ThreatIngestor

TalEliyahu / Threat_Model_Examples

ecstatic-nobel / OSweep

t4d / PhishingKitHunter

zdhenard42 / SOC-Multitool

alvin-tosh / Infosec-and-Hacking-Scripts

utmstack / UTMStack

jackaduma / SecBERT

ecstatic-nobel / Analyst-Arsenal

ethansilvas / google-cybersecurity

jh00nbr / Phishruffus

tatsuiman / malware-traffic-analysis.net

CERTCC / Vulnerability-Data-Archive

401trg / detections

Improve this page

Add this topic to your repo