TypeDB CTI
TypeDB CTI is an open source threat intelligence platform that allows organizations to store and manage their cyber threat intelligence (CTI) knowledge in one database, enabling professionals to gain new insights about cyber threats by bringing together disparate CTI information. It enables data modeling based on logical and object-oriented principles, making it easy to create complex schemas and ingest various networks of CTI data. TypeDB's logical inference capability during query runtime helps discover new insights from existing CTI data, such as inferred transitive relations indicating the attribution of attack patterns to specific entities. It also facilitates linking hash values, IP addresses, or any shared data values.
FEATURES
ALTERNATIVES
AbuseHelper is an open-source framework for receiving and redistributing abuse feeds and threat intel.
Python APIs for serializing and de-serializing STIX2 JSON content with higher-level APIs for common tasks.
A cybersecurity concept categorizing indicators of compromise based on their level of difficulty for threat actors to change.
A tool for fetching and visualizing cyber threat intelligence data with Elasticsearch and Kibana integration.
A project that detects malicious SSL connections by identifying and blacklisting SSL certificates used by botnet C&C servers and identifying JA3 fingerprints to detect and block malware botnet C&C communication.
The FASTEST Way to Consume Threat Intelligence and make it actionable.
TIH is an intelligence tool that helps you search for IOCs across multiple security feeds and APIs.
An informational repo about hunting for adversaries in your IT environment.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.