{"id":13495314,"url":"https://github.com/fastfire/deepdarkCTI","last_synced_at":"2025-03-28T16:32:11.436Z","repository":{"id":37474804,"uuid":"372053381","full_name":"fastfire/deepdarkCTI","owner":"fastfire","description":"Collection of Cyber Threat Intelligence sources from the deep and dark web","archived":false,"fork":false,"pushed_at":"2024-10-23T06:40:37.000Z","size":1916,"stargazers_count":4424,"open_issues_count":60,"forks_count":781,"subscribers_count":217,"default_branch":"main","last_synced_at":"2024-10-23T10:25:34.512Z","etag":null,"topics":["cti","cyberhunter","darkweb","deepweb","threat-intelligence"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/fastfire.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-05-29T19:18:51.000Z","updated_at":"2024-10-23T09:39:27.000Z","dependencies_parsed_at":"2023-10-27T23:21:40.536Z","dependency_job_id":"e55cdfdf-db19-4e9f-802c-ed1b5db300ca","html_url":"https://github.com/fastfire/deepdarkCTI","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fastfire%2FdeepdarkCTI","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fastfire%2FdeepdarkCTI/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fastfire%2FdeepdarkCTI/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/fastfire%2FdeepdarkCTI/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/fastfire","download_url":"https://codeload.github.com/fastfire/deepdarkCTI/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":246062908,"owners_count":20717705,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cti","cyberhunter","darkweb","deepweb","threat-intelligence"],"created_at":"2024-07-31T19:01:33.452Z","updated_at":"2025-03-28T16:32:11.407Z","avatar_url":"https://github.com/fastfire.png","language":null,"funding_links":["https://www.buymeacoffee.com/fastfire"],"categories":["Misc","Others","扫描器、资产收集、子域名","[↑](#-content) 🛠️ Tools","Repos"],"sub_categories":["网络服务_其他"],"readme":"# deepdarkCTI\n\n![deepdarkCTI_150_150](https://github.com/fastfire/deepdarkCTI/assets/16737186/9be3e93d-7293-409c-97fe-cc966378aed7)\n\nCollection of Cyber Threat Intelligence sources from the Deep and Dark Web\n\nThe official website of the project is https://www.deepdarkcti.com. The aim of this project is to collect the sources, present in the Deep and Dark web, which can be useful in Cyber Threat Intelligence contexts.\n\nThe contributors of the project (or people active in the field of Cyber Threat Intelligence) have a **Telegram group** available to propose new sources to be integrated within the project and to have a place to discuss the tactics and techniques of research and analysis that are used daily.\nIt is possible to request access to the Telegram group by sending a request to https://twitter.com/fastfire or https://t.me/fastfire83 or https://bsky.app/profile/fastfire.bsky.social\n\nOr, if you want to contribute with a donation, you can. We added this possibility because it was requested by some followers of the project. The donations, as well as the use of the same, will be managed in total transparency and will be used exclusively to build resources related to the deepdarkCTI project.\n\n\u003ca href=\"https://www.buymeacoffee.com/fastfire\" target=\"_blank\"\u003e\u003cimg src=\"https://cdn.buymeacoffee.com/buttons/default-orange.png\" alt=\"Buy Me A Coffee\" height=\"41\" width=\"174\"\u003e\u003c/a\u003e\n\n**What is Cyber Threat Intelligence?**\n\nCyber Threat Intelligence (CTI) is defined as the collection and analysis of information about threats and adversaries and drawing patterns that provide an ability to make knowledgeable decisions for the preparedness, prevention and response actions against various cyber attacks.\n\nCTI involves collecting, researching and analyzing trends and technical developments in the area of cyber threats and if often presented in the form of Indicators of Compromise (IoCs) or threat feeds, provides evidence-base knowledge regarding an organization's unique threat landscape.\n\nIn Cyber Threat Intelligence, analysis if performed based on the intent, capability and opportunity triad. With the study of this triad, experts can evaluate and make informed, forward-learning strategic, operational and tactical decisions on existing or emerging threats to the organization.\n\n**There are three types of Threat Intelligence:**\n\n_Strategic_ - provides high-level information regarding cyber security posture, threats and its impact on business.\n\n_Tactical_ - provides information related to threat actor's Tactics, Techniques and Procedures (TTPs) used to perform attacks.\n\n_Operational_ - provides information about specific threats against the organization.\n\n**Typical sources of intelligence are:**\n\n- Open Source Intelligence (OSINT)\n- Human Intelligence\n- Counter Intelligence\n- Internal Intelligence\n\nThrough this project, which takes into consideration the OSINT sources related to the Deep and Dark Web domain, we aim to monitor the intelligence information present in the following sources:\n\n- Telegram channels, groups and chats\n- Discord channels\n- ransomware gangs sites\n- forums related to cyber criminal activities and data leaks\n- markets\n- exploits databases\n- Twitter accounts\n- RaaS (Ransomware As A Service) sites\n\nIn addition, within the **methods** file, various techniques for searching and analyzing sources are described.\n\n## Star History\n\n[![Star History Chart](https://api.star-history.com/svg?repos=fastfire/deepdarkCTI\u0026type=Date)](https://star-history.com/#fastfire/deepdarkCTI\u0026Date)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffastfire%2FdeepdarkCTI","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ffastfire%2FdeepdarkCTI","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ffastfire%2FdeepdarkCTI/lists"}