Threat Management for Cybersecurity

A collaborative repository documenting TTPs and attack patterns associated with malicious OIDC/OAuth 2.0 applications.

A platform for accessing threat intelligence and collaborating on cyber threats.

A Microsoft framework for secure and efficient sharing of cybersecurity information between trusted parties to reduce cybersecurity risks.

A Python library that provides an interface to query ThreatCrowd's API for threat intelligence data including email, IP, domain, and antivirus reports with built-in caching capabilities.

Facilitating exchange of information and knowledge to collectively protect against cyberattacks.

A web-based visualization tool for navigating and annotating MITRE ATT&CK matrices to support threat analysis, defensive planning, and security coverage assessment.

A free threat intelligence feed and banlist feed of known malicious IP addresses for public use only.

A tracker that detects and logs SYN packets with a specific signature generated by the Mirai malware, providing real-time information on Mirai-based campaigns.

OSTrICa is an open source plugin-based framework that collects and visualizes threat intelligence data from various sources to help cybersecurity professionals correlate IoCs and enhance their defensive capabilities.

Dataplane.org is a nonprofit organization providing free data, tools, and analysis to increase awareness of Internet trends, anomalies, threats, and misconfigurations.

CyberOwl aggregates and summarizes daily security advisories from multiple CERT organizations and threat intelligence sources into consolidated reports.

A comprehensive list of IP addresses for cybersecurity purposes, including threat intelligence, incident response, and security research.

CAPEC™ is a comprehensive dictionary of known attack patterns used by adversaries to exploit weaknesses in cyber-enabled capabilities.

A cybersecurity concept categorizing indicators of compromise based on their level of difficulty for threat actors to change.

A curated collection of companies that have publicly disclosed adversary tactics, techniques, and procedures following security breaches.

Globally-accessible knowledge base of adversary tactics and techniques for cybersecurity.

An open source threat intelligence platform for storing and managing cyber threat intelligence knowledge.

Repository containing MITRE ATT&CK and CAPEC threat intelligence datasets formatted in STIX 2.0 standard for cybersecurity analysis and threat intelligence sharing.

Intelligence feeds for cybersecurity professionals to stay informed about emerging threats and trends.

A nonprofit security organization that collects and shares threat data to make the Internet more secure.

A publicly available dataset of security incidents designed to support cybersecurity research and threat analysis.

A comprehensive list of APT groups and operations for tracking and mapping different names and naming schemes used by cybersecurity companies and antivirus vendors.

The Cybersecurity and Infrastructure Security Agency (CISA) is a government agency that provides alerts, advisories, and resources to help protect the United States' critical infrastructure from cyber threats.