Skip to content

Category 6: Analytical and Threat Assessment Tools⚓︎

Overview⚓︎

This category encompasses the frameworks and repositories used to synthesize raw data into actionable intelligence. It supports the "Analysis" phase of the intelligence cycle.

Threat Intelligence Platforms⚓︎

  1. MISP - Open source threat intelligence platform.
  2. OpenCTI - Open Cyber Threat Intelligence platform.
  3. MITRE ATT&CK Navigator - Visualizing adversary techniques.
  4. ThreatConnect - Threat intelligence operations platform.
  5. YARA - Tool for identifying and classifying malware.

Knowledge Bases & Curated Lists⚓︎

  1. OSINT Framework - Comprehensive directory of tools.
  2. Nixintel's Resource List - Massive organized collection.
  3. The Ultimate OSINT Collection - Airtable database of sources.
  4. Rae Baker's Deep Dive - Advanced OSINT techniques.
  5. Awesome OSINT (GitHub) - Curated list of OSINT tools.
  6. OSINT Tools (GitHub) - List of tools and frameworks.
  7. Non-typical OSINT-guide (GitHub) - Advanced and unconventional methods.
  8. OSINT for Countries (GitHub) - Resources categorized by country.

Analysis Tools⚓︎

  1. Maltego - Link analysis visualization.
  2. Gephi - Open source graph visualization platform.
  3. Neo4j - Graph database for analyzing relationships.
  4. Hunchly - Web page capture and evidence collection tool.
  5. SpiderFoot - Automated OSINT collection.
  6. Poison (GitHub) - Scalable OSINT scraping tool.
  7. OSINT Browser Extensions (GitHub) - Extensions to aid investigations.