TypeDB CTI
TypeDB CTI is an open source threat intelligence platform that allows organizations to store and manage their cyber threat intelligence (CTI) knowledge in one database, enabling professionals to gain new insights about cyber threats by bringing together disparate CTI information. It enables data modeling based on logical and object-oriented principles, making it easy to create complex schemas and ingest various networks of CTI data. TypeDB's logical inference capability during query runtime helps discover new insights from existing CTI data, such as inferred transitive relations indicating the attribution of attack patterns to specific entities. It also facilitates linking hash values, IP addresses, or any shared data values.
FEATURES
ALTERNATIVES
Powershell Threat Hunting Module for scanning remote endpoints and collecting comprehensive information.
A command-line tool that fetches known URLs from various sources to identify potential security threats and vulnerabilities.
A cybersecurity tool for managing data points and cyber threat indicators with a focus on neo4j data traversal.
msticpy is a library for InfoSec investigation and hunting in Jupyter Notebooks with extensive functionality for log data analysis, threat intelligence enrichment, and visualization.
A collection of companies that disclose adversary TTPs after being breached, useful for analysis of intrusions.
A threat exposure management platform that monitors clear and dark web environments to detect and provide actionable intelligence on potential security threats like data leaks, credentials, and malicious actor activities.
A set of configuration files to use with EclecticIQ's OpenTAXII implementation for MISP integration.
C# wrapper around Yara pattern matching library with Loki and Yara signature support.
PINNED
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.