Proactive threat management identifies, assesses, and neutralizes cyber risks for robust defense.
The Trystero Project is a threat intelligence platform that measures email security efficacy and provides various tools and resources, while VMware Carbon Black offers endpoint protection and workload security solutions.
BotScout.com provides proactive bot detection, screening, and banning through a powerful API.
Collect various intelligence sources for hosts in CSV format.
Machinae is a tool for collecting intelligence from public sites/feeds about various security-related pieces of data.
A sophisticated npm attack attributed to North Korean threat actors, targeting technology firms and their employees.
ONYPHE is a cyber defense search engine that discovers exposed assets and provides real-time monitoring to identify vulnerabilities and potential risks.
Sample detection rules and dashboards for Google Security Operations
A parsing tool for Yara Scan Service's JSON output file to help maximize benefits and automate parsing of Yara Scan Service results.
A collection of tools and resources for threat hunters.
Freely available network IOCs for monitoring and incident response
A collection of Yara rules licensed under the DRL 1.1 License.
A sophisticated npm attack attributed to North Korean threat actors, targeting technology firms and their employees.
Dataplane.org is a nonprofit organization providing free data, tools, and analysis to increase awareness of Internet trends, anomalies, threats, and misconfigurations.
A summary of the threat modeling posts and final thoughts on the process
The Trystero Project is a threat intelligence platform that measures email security efficacy and provides various tools and resources, while VMware Carbon Black offers endpoint protection and workload security solutions.
A threat intelligence platform that monitors, analyzes, and provides detailed information about threat actors targeting non-human identities across various industries.
Yara rule generator using VirusTotal code similarity feature code-similar-to.
A Python library for handling TAXII v1.x Messages and invoking TAXII Services.
GCTI's open-source detection signatures for malware and threat detection
Sample detection rules and dashboards for Google Security Operations
A tool for fetching and visualizing cyber threat intelligence data with Elasticsearch and Kibana integration.
A free and open-source OSINT framework for gathering and analyzing data from various sources
Provides advanced external threat intelligence to help organizations proactively identify and mitigate potential security threats.
A reference implementation for collecting events and performing CAR analytics to detect potential adversary activity.
