FT3: Fraud Tools, Tactics, and Techniques Framework

A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters to share knowledge, collaborate on techniques, and advance t…

A resource containing all the tools each ransomware gangs uses

Routinely updated list of common malware names for threat research and identification.

Operational information regarding the log4shell vulnerabilities in the Log4j logging library.

Import AbuseCH IOC Feeds into MISP

Given a TLD zone file, PhishCanary extracts International Domain Names (IDNs) that are homoglyphs of specified target domain names.

A place for all my URLhaus scripts

PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @PhishKitTracker on twitter if you find a #threatactoremail in #phishingkit , maintained by @neonprimetime

FakeOpenSmtpRelay.py is a Python3 script simulating a working open SMTP relay

Security Monitoring Resolution Categories

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Th…

I wanted to call this repo "Nuclear Football Codes". I was outvoted..

A browser extension for OSINT search

Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.

A collection of all the Trickbot banking trojan configurations that I've collected so far

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

Internet data acquisition

Various scripts for different malware families

A Python RESTful API framework for online malware analysis and threat intelligence services.

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

A VBA parser and emulation engine to analyze malicious macros.

A curated list of Awesome Threat Intelligence resources

Six Degrees of Domain Admin