network security monitoring NIDS HIDS CTI DFIR

Knowledgebase of universal truths and technical analysis caveats for CTI and DFIR, in one place.

Power is gainer by sharing knowledge, not hoarding it!

End 2 end pipeline

Python-based tool for analyzing URLs and detecting potential threats using various cybersecurity services.

This taxonomy was designed with the aim of enabling desired sharing and preventing unwanted sharing between Thales Group security communities.

CTI Reporter is a small flask wiki to help index threat intelligence data

Estado del arte de la ciberseguridad

zeek network security monitoring NIDS HIDS

A fork of Spamhole by Dustin Trammell with added safety

A fork of the original mailhoney SMTP honeypot rewritten due to library deprecation

cybercure.ai python SDK to digest cybercure free cyber threat intelligence feeds

quick searching for threat intelligence and information: IP , URL , Port information, Email,Process.

docker-compose configuration to install OpenCTI with connectors (check my blog post for more information)

APT Groups and Operations (https://apt.threattracking.com) in SQL

The Intelligence Analyst's Workstation

List of malware and other malicious artifacts sha256 hashes

Cortex-Analyzers Modified - SecTeam/CERT/SOC Security orchestration tools on steroids

Digging Deeper in cyber security and threat hunting

Python-based web application project for exploring and analyzing the dark web within the TOR (The Onion Router) network. With a focus on threat intelligence and cybersecurity, our software provides a user-friendly interface for discovering, validating & analyzing onion URLs, DOM rendering, Enumerating Onion URLs and scheduling automated tasks init.