{"id":24678446,"url":"https://github.com/vuldb/cyber_threat_intelligence","last_synced_at":"2026-01-26T18:56:03.452Z","repository":{"id":41113047,"uuid":"411307412","full_name":"vuldb/cyber_threat_intelligence","owner":"vuldb","description":"Cyber Threat Intelligence Data, Indicators, and Analysis","archived":false,"fork":false,"pushed_at":"2026-01-20T14:16:42.000Z","size":135305,"stargazers_count":107,"open_issues_count":0,"forks_count":19,"subscribers_count":12,"default_branch":"main","last_synced_at":"2026-01-20T22:48:05.662Z","etag":null,"topics":["cti","cyber-threat-intelligence","cyber-threats","exploit","indicator-of-compromise","indicators-of-compromise","ioa","ioc","malware","threat-intelligence"],"latest_commit_sha":null,"homepage":"https://vuldb.com/?kb.cti","language":null,"has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/vuldb.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2021-09-28T14:06:22.000Z","updated_at":"2026-01-20T14:19:48.000Z","dependencies_parsed_at":"2025-07-17T15:36:30.612Z","dependency_job_id":null,"html_url":"https://github.com/vuldb/cyber_threat_intelligence","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/vuldb/cyber_threat_intelligence","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vuldb%2Fcyber_threat_intelligence","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vuldb%2Fcyber_threat_intelligence/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vuldb%2Fcyber_threat_intelligence/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vuldb%2Fcyber_threat_intelligence/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/vuldb","download_url":"https://codeload.github.com/vuldb/cyber_threat_intelligence/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vuldb%2Fcyber_threat_intelligence/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28785172,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-26T13:55:28.044Z","status":"ssl_error","status_checked_at":"2026-01-26T13:55:26.068Z","response_time":59,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cti","cyber-threat-intelligence","cyber-threats","exploit","indicator-of-compromise","indicators-of-compromise","ioa","ioc","malware","threat-intelligence"],"created_at":"2025-01-26T13:17:11.013Z","updated_at":"2026-01-26T18:56:03.429Z","avatar_url":"https://github.com/vuldb.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Cyber Threat Intelligence Data and Analysis\n\nOur unique [Cyber Threat Intelligence](https://vuldb.com/?kb.cti) aims to determine the ongoing research of APT actors to anticipiate their acitivities.\n\n[![CC-BY-SA](https://i.creativecommons.org/l/by-sa/4.0/88x31.png)](#license)\n\n## Activity Monitoring\n\nA broad activity monitoring is used to determine the actions by [actors](https://vuldb.com/?actor). Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and social media exchanges makes it possible to identify planned attacks.\n\n## Geopolitical Analysis\n\nThe CTI team is mapping structures of [countries](https://vuldb.com/?country) and their relationships to identify tensions and possible attack scenarios.\n\n## Indicators\n\nWe provide a wide variety of indicators like campaigns, country associations, IOC (Indicator of Compromise), TTP (Tactics, Techniques, Procedures), IOA (Indicator of Attack), and external sources.\n\n## Predictive Capabilities\n\nDue to our unique AI-based system we are able to provide predictive indicators. These are indicators which are not yet used in attacks but might be used by the specific actors. This helps to anticipate and mitigate attacks very eary.\n\n![The unique VulDB CTI model to predict activities and indicators](https://vuldb.com/documentation/images/cti_model.png)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvuldb%2Fcyber_threat_intelligence","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fvuldb%2Fcyber_threat_intelligence","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvuldb%2Fcyber_threat_intelligence/lists"}