APT Groups and Operations Logo

APT Groups and Operations

0
Free
Visit Website

A Google sheet spreadsheet containing a comprehensive list of APT groups and operations, providing a reference for tracking and mapping different names and naming schemes used by cybersecurity companies and antivirus vendors. The spreadsheet includes tabs for different countries and regions, as well as an 'Unknown' tab for groups with no attribution. It also highlights overlaps between different groups and provides a search function for easy lookup. The spreadsheet is licensed under CC Creative Commons - Attribution 4.0 International (CC BY 4.0) and is open for contributions from threat intel researchers, malware analysts, and vendor representatives.

FEATURES

ALTERNATIVES

Facilitates distribution of Threat Intelligence artifacts to defensive systems.

Open Source Threat Intelligence Collector with plugin-oriented framework.

Stixview is a JS library for embeddable interactive STIX2 graphs, aiming to bridge the gap between CTI stories and structured CTI snapshots.

A tool for tracking, scanning, and filtering yara files with distributed scanning capabilities.

Powershell Threat Hunting Module for scanning remote endpoints and collecting comprehensive information.

Repository containing MITRE ATT&CK and CAPEC datasets in STIX 2.0 for cybersecurity threat modeling.

Check the reputation of an IP address to identify potential threats.

Repository of APT-related documents and notes sorted by year.