ttp

Star

Here are 54 public repositories matching this topic...

Language:All

Filter by language

All54 Python20 Rust4 HTML3 PowerShell3 C#2 Shell2 C1 C++1 Go1 JavaScript1

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

cyb3rxp /awesome-soc

Star1.3k

A collection of sources of documentation, as well as field best practices, to build/run a SOC

architecture detection management incident-response soa cert csirt siem tip soc risk-management ttp soar sirp mitre-attack purpleteam

UpdatedFeb 17, 2025

cisagov /decider

Star1.2k

A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

cybersecurity ttp

UpdatedFeb 11, 2025
HTML

vectra-ai-research /MAAD-AF

Star371

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

microsoft security powershell mitre red-team microsoft-graph ttp cloud-security security-testing cloud-administration azuread adversary-emulation microsoft365 identity-access-management microsoft-azure-security entra-id

UpdatedSep 27, 2024
PowerShell

crocodyli /ThreatActors-TTPs

Star265

Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups and evolving to other types of threats.

malware ransomware threat-intelligence ttp mitre-attack ransomware-group threat-acto

UpdatedJan 20, 2025

vectra-ai-research /Halberd

Star251

Halberd : Multi-Cloud Attack Platform

microsoft aws azure gcp offensive-security security-tools ttp cloud-security security-testing azuread redteam mitre-attack m365 redteam-tools blueteam-tools entra-id

UpdatedMar 5, 2025
Python

prodaft /malware-ioc

Star240

This repository contains indicators of compromise (IOCs) of our various investigations.

ioc apt malware cybersecurity ransomware threat-hunting malware-research threatintel threat-intelligence ttp malware-detection threatintelligence

UpdatedMar 17, 2025
Python

0xsyr0 /Red-Team-Playbooks

Sponsor

Star215

This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.

playbook penetration-testing offensive-security ttp redteam offensive-methodology

UpdatedFeb 15, 2025
PowerShell

curated-intel /Log4Shell-IOCs

Star183

A collection of intelligence about Log4Shell and its exploitation activity.

java ioc log4j mirai cybersecurity threatintel cti log4j2 cobalt-strike ttp threatintelligence cve-2021-44228 log4shell kinsing m8220 swrort muhstik khonsari kirabash sitesloader

UpdatedMar 4, 2022
Python

vlegoy /rcATT

Star119

A python app to predict Att&ck tactics and techniques from cyber threat reports

attack multi-label-classification ttp cyber-threat-intelligence

UpdatedNov 15, 2023
Python

Galeax /CVE2CAPEC

Star78

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

cybersecurity infosec cve cwe capec ttp mitre-attack-db mitre-attack cves infosectools mitre-attack-navigator mitre-cwe mitre-capec

UpdatedMar 17, 2025
Python

everettsouthwick /trusted-traveler-scheduler

Star57

Python script for periodically fetching appointment dates from the Trusted Traveler Program API for Global Entry, Nexus, SENTRI, and FAST, with notifications to the user when new appointments are discovered.

python docker fast nexus global entry cbp program traveler ttp global-entry globalentry trusted sentri trusted-traveler-program trusted-traveler

UpdatedJan 9, 2025
Python

knight0x07 /DarkGate-Install-Script-via-DNS-TXT-Record

Star41

PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record

dns reverse-engineering malware cybersecurity poc infosec threat-hunting malware-analysis threatintel malware-development threat-intelligence ttp darkgate

UpdatedDec 15, 2023

tstromberg /ttp-bench

Star40

Adversary emulation for EDR/SIEM testing (macOS/Linux)

security ioc benchmark ids intrusion ttp edr

UpdatedFeb 1, 2024
Go

h4ndzdatm0ld /ttp_sros_parser

Star35

TTP Parser kit for SROS devices.

nokia ttp sros 7750

UpdatedOct 10, 2023
Python

tbotnz /ios-show-run-ttp

Sponsor

Star33

TTP template for Cisco IOS "show run"

ios cisco netmiko cisco-device devnet ttp cisco-ios netpalm netmiko-ios

UpdatedAug 9, 2022
Python

Offensive-Panda /MalwareAnalysis

Star14

This central repository is crafted for cybersecurity enthusiasts, researchers, and professionals aiming to advance their skills. It offers valuable resources for those focused on analyzing and understanding different types of malware.

malware malware-analysis offensive-security ttp mitre-attack