awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

3643

4 months ago

awesomeawesome-listdetection

awesome-threat-intelligence

A curated list of Awesome Threat Intelligence resources

8135apache-2.0

3 months ago

awesomeawesome-listhacktoberfest

awesome-threat-modelling

awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, vid

Dockerfile1334cc0-1.0

4 months ago

appsecawesomeawesome-list

threat.gg-agent

A SSH Server in Go that logs username/password combos

Go37mit

12 months ago

owasp-threat-dragon-desktop

owasp-threat-dragon-desktop

An installable desktop variant of OWASP Threat Dragon

CSS594apache-2.0

14 days ago

awesome-threat-modeling

a curated list of useful threat modeling resources

121apache-2.0

5 months ago

risk-assessmentsecuritythreat-modeling

threatbus

🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi

Python257bsd-3-clause

2 years ago

cifcif3ids

malsub

A Python RESTful API framework for online malware analysis and threat intelligen

Python366other

6 months ago

api-clientcybersecuritymalware

cdk-threagile

Agile Threat Modeling as Code

TypeScript12mit

2 years ago

appseccdkcdktg

PSHunt

Powershell Threat Hunting Module

PowerShell276apache-2.0

8 years ago

combine

Tool to gather Threat Intelligence indicators from publicly available sources

Python650gpl-3.0

6 years ago

Forager

Forager

Multithreaded threat Intelligence gathering built with Python3

Python167mit

7 years ago

carbonblackpythonthreatintel

RedHunt-OS

RedHunt-OS

Virtual Machine for Adversary Emulation and Threat Hunting

1225bsd-3-clause

4 years ago

EnchantedFortress

A simple game about managing resources of a fortress. Distribute your workforce,

Java59lgpl-3.0

2 years ago

androidgame

DocBleach

:shower: Sanitising your documents, one threat at a time. — Content Disarm & Rec

Java147mit

last year

content-disarm-reconstructjavaoffice

typedb-cti

typedb-cti

Open Source Threat Intelligence Platform

Python140apache-2.0

last year

cticybercybersecurity

trapster-community

trapster-community

Multi-services Asynchronous Honeypot Solution with real-time threat detection

Python18agpl-3.0

4 months ago

cybersecurityhoneypotpython

ThreatIngestor

ThreatIngestor

Extract and aggregate threat intelligence.

Python808gpl-2.0

10 months ago

dfirfraud-detectionindicators-of-compromise

safenotes

safenotes

Safe Notes is a security project aimed at providing an encrypted, private note m

Dart237gpl-3.0

14 days ago

androidanonymitydart

matano

matano

Open source security data lake for threat hunting, detection & response, and cyb

Rust1454apache-2.0

4 months ago

alertingapache-icebergaws

PhishingKitTracker

PhishingKitTracker

PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @Phish

Python99

3 years ago

APT-Hunter

APT-Hunter

APT-Hunter is Threat Hunting tool for windows event logs which made by purple te

Python1210gpl-3.0

8 months ago

apt-attacksforensic-analysisincident-response

tiq-test

Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds

R166gpl-3.0

9 years ago

hayabusa

hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generat

Rust2113gpl-3.0

4 months ago

attackcybersecuritydetection

yeti

yeti

Your Everyday Threat Intelligence

Python1678apache-2.0

4 months ago

dfirenrichmentinfosec

rita

rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command a

Go199gpl-3.0

3 days ago

anomaly-detectionbeaconsblue-team

spiderfoot

spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surfa

Python13219mit

8 days ago

attacksurfacecticybersecurity

MISP

MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

PHP5181agpl-3.0

4 months ago

cticybersecurityfraud-detection

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3056

4 years ago

dfirhuntingids

threataggregator

Aggregates security threats from a number of online sources, and outputs to Sysl

Python78mit

9 years ago

dagda

dagda

a tool to perform static analysis of known vulnerabilities, trojans, viruses, ma

Python1159apache-2.0

2 years ago

detecting-anomalous-activitiesdockermalware-detection

openappsec

openappsec

open-appsec is a machine learning security engine that preemptively and automati

C++797apache-2.0

3 months ago

api-securityapplication-securityappsec

awesome-security-newsletters

Periodic cyber security newsletters that capture the latest news, summaries of c

806gpl-2.0

9 months ago

cybersecuritynewsletter

mqtt-pwn

mqtt-pwn

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se

Python368gpl-3.0

4 months ago

exploitationiotmqtt

vue-chessboard

Chessboard vue component to load positions, create positions and see threats

Vue164gpl-3.0

2 years ago

chesschessboardvue

teler-waf

teler-waf

teler-waf is a Go HTTP middleware that protects local web services from OWASP To

Go322apache-2.0

4 months ago

gogo-librarygo-package

MARA_Framework

MARA_Framework

MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a

Python616lgpl-3.0

5 years ago

boringtun

boringtun

Description 1.1.1.1 w/ WARP – the free app that makes your Internet more pr

Rust5945bsd-3-clause

6 months ago

cloudflarerustwireguard

awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

3643

4 months ago

awesomeawesome-listdetection

awesome-threat-intelligence

A curated list of Awesome Threat Intelligence resources

8135apache-2.0

3 months ago

awesomeawesome-listhacktoberfest

awesome-threat-modelling

awesome-threat-modelling

A curated list of threat modeling resources (Books, courses - free and paid, vid

Dockerfile1334cc0-1.0

4 months ago

appsecawesomeawesome-list

threat.gg-agent

A SSH Server in Go that logs username/password combos

Go37mit

12 months ago

owasp-threat-dragon-desktop

owasp-threat-dragon-desktop

An installable desktop variant of OWASP Threat Dragon

CSS594apache-2.0

14 days ago

awesome-threat-modeling

a curated list of useful threat modeling resources

121apache-2.0

5 months ago

risk-assessmentsecuritythreat-modeling

threatbus

🚌 Threat Bus – A threat intelligence dissemination layer for open-source securi

Python257bsd-3-clause

2 years ago

cifcif3ids

malsub

A Python RESTful API framework for online malware analysis and threat intelligen

Python366other

6 months ago

api-clientcybersecuritymalware

cdk-threagile

Agile Threat Modeling as Code

TypeScript12mit

2 years ago

appseccdkcdktg

PSHunt

Powershell Threat Hunting Module

PowerShell276apache-2.0

8 years ago

combine

Tool to gather Threat Intelligence indicators from publicly available sources

Python650gpl-3.0

6 years ago

Forager

Forager

Multithreaded threat Intelligence gathering built with Python3

Python167mit

7 years ago

carbonblackpythonthreatintel

RedHunt-OS

RedHunt-OS

Virtual Machine for Adversary Emulation and Threat Hunting

1225bsd-3-clause

4 years ago

EnchantedFortress

A simple game about managing resources of a fortress. Distribute your workforce,

Java59lgpl-3.0

2 years ago

androidgame

DocBleach

:shower: Sanitising your documents, one threat at a time. — Content Disarm & Rec

Java147mit

last year

content-disarm-reconstructjavaoffice

typedb-cti

typedb-cti

Open Source Threat Intelligence Platform

Python140apache-2.0

last year

cticybercybersecurity

trapster-community

trapster-community

Multi-services Asynchronous Honeypot Solution with real-time threat detection

Python18agpl-3.0

4 months ago

cybersecurityhoneypotpython

ThreatIngestor

ThreatIngestor

Extract and aggregate threat intelligence.

Python808gpl-2.0

10 months ago

dfirfraud-detectionindicators-of-compromise

safenotes

safenotes

Safe Notes is a security project aimed at providing an encrypted, private note m

Dart237gpl-3.0

14 days ago

androidanonymitydart

matano

matano

Open source security data lake for threat hunting, detection & response, and cyb

Rust1454apache-2.0

4 months ago

alertingapache-icebergaws

PhishingKitTracker

PhishingKitTracker

PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @Phish

Python99

3 years ago

APT-Hunter

APT-Hunter

APT-Hunter is Threat Hunting tool for windows event logs which made by purple te

Python1210gpl-3.0

8 months ago

apt-attacksforensic-analysisincident-response

tiq-test

Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds

R166gpl-3.0

9 years ago

hayabusa

hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generat

Rust2113gpl-3.0

4 months ago

attackcybersecuritydetection

yeti

yeti

Your Everyday Threat Intelligence

Python1678apache-2.0

4 months ago

dfirenrichmentinfosec

rita

rita

Real Intelligence Threat Analytics (RITA) is a framework for detecting command a

Go199gpl-3.0

3 days ago

anomaly-detectionbeaconsblue-team

spiderfoot

spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surfa

Python13219mit

8 days ago

attacksurfacecticybersecurity

MISP

MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

PHP5181agpl-3.0

4 months ago

cticybersecurityfraud-detection

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security moni

3056

4 years ago

dfirhuntingids

threataggregator

Aggregates security threats from a number of online sources, and outputs to Sysl

Python78mit

9 years ago

dagda

dagda

a tool to perform static analysis of known vulnerabilities, trojans, viruses, ma

Python1159apache-2.0

2 years ago

detecting-anomalous-activitiesdockermalware-detection

openappsec

openappsec

open-appsec is a machine learning security engine that preemptively and automati

C++797apache-2.0

3 months ago

api-securityapplication-securityappsec

awesome-security-newsletters

Periodic cyber security newsletters that capture the latest news, summaries of c

806gpl-2.0

9 months ago

cybersecuritynewsletter

mqtt-pwn

mqtt-pwn

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and se

Python368gpl-3.0

4 months ago

exploitationiotmqtt

vue-chessboard

Chessboard vue component to load positions, create positions and see threats

Vue164gpl-3.0

2 years ago

chesschessboardvue

teler-waf

teler-waf

teler-waf is a Go HTTP middleware that protects local web services from OWASP To

Go322apache-2.0

4 months ago

gogo-librarygo-package

MARA_Framework

MARA_Framework

MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a

Python616lgpl-3.0

5 years ago

boringtun

boringtun

Description 1.1.1.1 w/ WARP – the free app that makes your Internet more pr

Rust5945bsd-3-clause

6 months ago

cloudflarerustwireguard