Picus Threat Library

Picus Threat Library is a threat intelligence repository containing over 30,000 daily-updated threat samples. The library includes malware, vulnerability exploits, web application attacks, and endpoint attacks. It provides atomic adversarial techniques covering post-compromise techniques in the MITRE ATT&CK framework and hundreds of Advanced Persistent Threat (APT) driven attack scenarios. The library content is mapped to industry frameworks including MITRE ATT&CK, Unified Kill Chain, and OWASP, along with targeted applications, operating systems, and CVE/CWE references. Threats are categorized into Web Application, Vulnerability Exploitation, Endpoint, Malicious Code, and Data Exfiltration categories. The platform offers advanced search and filter capabilities to locate threats by category, region, or severity. Users can create custom templates to address specific organizational needs. Ready-to-use templates such as Ransomware Readiness and APT Readiness enable focused testing for specific attack types or adversaries. Picus Labs continuously updates the library with new and high-impact threats to maintain current coverage of attack campaigns and vulnerabilities. The library is designed for use by SOC analysts, threat hunters, incident responders, security operations teams, red teams, and penetration testers for security validation and testing scenarios.