# Threat Indicator Enrichment Tools > Search results for `enrich and check indicators against threat feeds` on awesome-repositories.com. 120 total matches; showing the first 50. Explore on the web: https://awesome-repositories.com/q/enrich-and-check-indicators-against-threat-feeds **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/enrich-and-check-indicators-against-threat-feeds).** ## Results - [spmedia/crypto-scam-and-crypto-phishing-threat-intel-feed](https://awesome-repositories.com/repository/spmedia-crypto-scam-and-crypto-phishing-threat-intel-feed.md) (61 ⭐) — A fresh feed of crypto phishing and crypto scam websites. Automatically updated daily/frequently. - [offensive-security/exploit-database](https://awesome-repositories.com/repository/offensive-security-exploit-database.md) (7,849 ⭐) — This project is a public exploit code archive and vulnerability database. It serves as a collection of documented software exploits and vulnerability data, providing a reference library of exploit scripts and payloads used to validate security flaws in target environments. The archive supports security threat intelligence, vulnerability research, and penetration testing workflows. It functions as a historical record of software vulnerabilities and the proof-of-concept code used to trigger them. The codebase is organized through directory-based categorization and flat-file data storage, utilizing plain-text metadata headers for vulnerability details. The repository uses a distributed versioning system to manage the archive and is distributed as a read-only mirror for local indexing. - [calcom/cal.com](https://awesome-repositories.com/repository/calcom-cal-com.md) (45,760 ⭐) — Cal.com is a comprehensive scheduling infrastructure platform designed to manage availability, booking workflows, and calendar synchronization across multiple users and external services. It provides a backend service for automated appointment scheduling, enabling the creation, confirmation, and management of booking lifecycles through a centralized state machine. The platform also offers embeddable user interface components that allow developers to integrate interactive booking experiences directly into third-party websites. What distinguishes the platform is its extensible app ecosystem and intelligent automation capabilities. Developers can build custom integrations using a modular plugin architecture, while an AI-driven interface allows for complex scheduling operations and configuration updates via natural language commands. The system includes a sophisticated event routing engine that automatically assigns meetings to hosts based on availability, round-robin rules, and organizational hierarchy, supported by real-time webhook orchestration to keep external systems synchronized. The platform covers a broad capability surface including CRM data synchronization, granular role-based access control, and secure OAuth-based integration management. It supports advanced booking configurations, such as prefilling form data and monitoring state changes, alongside specialized tools for Salesforce connectivity, including assignment traceability and fuzzy account matching. Users can also leverage local or remote server hosting options to maintain control over their infrastructure and security configurations. - [offensive-security/exploitdb](https://awesome-repositories.com/repository/offensive-security-exploitdb.md) (7,845 ⭐) — ExploitDB is a curated archive of exploit code and vulnerability data designed for penetration testing and security research. It serves as an offensive security knowledge base and a repository of publicly available proof-of-concept code used to validate software flaws. The project provides a searchable collection of historical and current exploit vectors. It supports security threat intelligence by tracking public releases and aids in vulnerability research by providing a reference library for analyzing how specific systems can be compromised. The archive is managed through a curated input pipeline that filters and validates submitted code. Data is stored in a flat-file structure with text-based metadata headers and search-optimized indexing to allow retrieval by platform or vulnerability identifier. - [certtools/intelmq-feeds-documentation](https://awesome-repositories.com/repository/certtools-intelmq-feeds-documentation.md) (74 ⭐) — Cyber Threat Intelligence Feeds - [blakeblackshear/frigate](https://awesome-repositories.com/repository/blakeblackshear-frigate.md) (33,778 ⭐) — Frigate is a self-hosted network video recorder that functions as a private, local AI-powered vision engine. It manages video streams by performing real-time object detection, tracking, and classification directly on local hardware, ensuring that security monitoring and activity recording remain independent of cloud services. The system distinguishes itself through a modular, hardware-accelerated video pipeline that offloads intensive decoding and machine learning inference to dedicated GPUs, NPUs, or specialized accelerators like Coral TPUs and Hailo modules. It utilizes state-based object tracking to maintain persistent identity and spatial coordinates for detected objects, enabling advanced behavioral analysis such as loitering detection and speed estimation. Users can further refine these capabilities through semantic search, which allows for text-to-image and image-to-image similarity queries across recorded footage. Beyond core detection, the platform provides comprehensive tools for spatial configuration, including declarative geometric masks and zone-based filtering to minimize false positives. It supports low-latency, peer-to-peer streaming for live viewing and integrates with smart home ecosystems to bridge camera feeds and event notifications. The system also includes specialized features for face recognition, license plate detection, and audio event analysis, all managed through a secure, token-authenticated API. The software is designed for containerized deployment, utilizing environment variables for configuration and standard protocols for certificate management and performance metric exposure. - [cinar/indicator](https://awesome-repositories.com/repository/cinar-indicator.md) (1,157 ⭐) — Indicator Go delivers a rich set of technical analysis indicators, customizable strategies, and a powerful backtesting framework. No dependencies, just pure simplicity. ✨ See how! 👀 - [aws/karpenter-provider-aws](https://awesome-repositories.com/repository/aws-karpenter-provider-aws.md) (7,661 ⭐) — karpenter-provider-aws is a Kubernetes node autoscaler and infrastructure provider for AWS. It serves as a node lifecycle manager and cluster cost optimizer that automatically provisions and removes compute instances based on the resource requirements of pending pods. The project distinguishes itself through advanced AWS spot instance orchestration and price-capacity optimized selection to reduce cloud spend. It minimizes costs by consolidating underutilized nodes and prioritizing spot or reserved instances over on-demand capacity, while proactively migrating workloads before cloud provider interruptions occur. The provider covers a broad range of capabilities including hardware provisioning for GPUs and bare metal servers, machine image management, and zonal fault tolerance. It manages networking configurations, storage topology alignment, and identity assignment, while implementing disruption guardrails and pacing to maintain application availability during scaling events. - [jasonxtn/argus](https://awesome-repositories.com/repository/jasonxtn-argus.md) (3,254 ⭐) — Argus is a modular network reconnaissance framework designed for gathering network intelligence, mapping infrastructure, and assessing security postures through automated discovery tasks. It operates as a containerized security toolset that allows for the consistent execution of specialized information-gathering modules across different operating systems. The system functions as an infrastructure audit tool and a web application security scanner, performing tasks such as DNS lookups, port scanning, and the inspection of HTTP headers to detect vulnerabilities. It also serves as a threat intelligence integrator by connecting to external security APIs to enrich reconnaissance data with global asset reputation and threat feeds. The framework covers network infrastructure reconnaissance, security configuration auditing for cryptographic setups and SSL/TLS fingerprints, and web intelligence gathering. It includes capabilities for interacting with network protocols such as SNMP, SSH, and LDAP to retrieve remote system and directory data. The software supports automated installation and deployment via Docker images to ensure environment isolation. - [backstage/backstage](https://awesome-repositories.com/repository/backstage-backstage.md) (33,679 ⭐) — Backstage is an open-source framework for building internal developer portals. It provides a centralized, metadata-driven software catalog that tracks ownership, dependencies, and lifecycle status for all technical assets by harvesting configuration files directly from version control systems. The platform is built on a plugin-based modular architecture, allowing teams to extend core functionality through isolated, independently deployable modules that integrate into a unified frontend and backend ecosystem. The project distinguishes itself through its focus on developer productivity and standardized workflows. It includes a template-driven scaffolding engine that automates the creation of new software projects, ensuring consistent architecture and best practices across teams. The platform also features granular, policy-based access control and secure proxy routing, which manage authentication and protect sensitive internal resources while aggregating infrastructure tools and documentation into a single, searchable interface. Beyond its core catalog and scaffolding capabilities, the platform supports a wide range of operational needs, including infrastructure monitoring, technical documentation management, and automated notification delivery. It provides standardized patterns for custom plugin development, testing, and interface composition, enabling organizations to tailor the portal to their specific requirements. The system is designed to be extensible, with support for AI integration, usage analytics, and interface localization to accommodate diverse organizational needs. - [lissy93/personal-security-checklist](https://awesome-repositories.com/repository/lissy93-personal-security-checklist.md) (21,691 ⭐) — This project provides a comprehensive, modular framework for auditing and hardening personal digital and physical security. It functions as a structured, platform-agnostic knowledge base that breaks down complex security standards into granular, actionable tasks. By utilizing a static documentation architecture, the project ensures that its guidance remains accessible and transparent, allowing users to track their security posture incrementally through a persistent, manual progress-tracking system. The project distinguishes itself by bridging the gap between digital cybersecurity and physical threat mitigation. Beyond standard account and network hardening, it offers specialized guidance on physical countermeasures, such as electromagnetic signal shielding, hardware sensor obfuscation, and the use of physical security hardware to prevent unauthorized data access. It also emphasizes privacy-centric alternatives to mainstream platforms, curating directories of software and decentralized services designed to minimize digital footprints and data harvesting. The scope of the guidance covers a wide range of domains, including digital identity protection, secure communication practices, and the auditing of mobile, web, and smart home environments. It provides systematic methodologies for managing cryptographic assets, enforcing multi-factor authentication, and sanitizing media metadata to prevent tracking. The repository serves as a centralized resource for ongoing security education, offering curated tool directories and threat intelligence to help users maintain a proactive defense against evolving surveillance and security risks. - [citizenlab/malware-indicators](https://awesome-repositories.com/repository/citizenlab-malware-indicators.md) (0 ⭐) — malware-indicators - [tontof/kriss_feed](https://awesome-repositories.com/repository/tontof-kriss-feed.md) (288 ⭐) — A simple and smart (or stupid) feed reader - [rshipp/awesome-malware-analysis](https://awesome-repositories.com/repository/rshipp-awesome-malware-analysis.md) (13,864 ⭐) — This project is a comprehensive, community-driven directory of open-source tools, datasets, and documentation for malware analysis and cybersecurity research. It serves as a centralized index for security professionals and researchers to locate resources for investigating, reverse engineering, and analyzing malicious software. The directory organizes information through a structured taxonomy, covering specialized domains such as memory forensics, network traffic inspection, and honeypot threat research. By aggregating links to external utilities and frameworks, it provides a platform-agnostic reference for identifying tools used in static analysis, dynamic sandboxing, and threat intelligence gathering. The repository is maintained as a collection of markdown files, facilitating version control and collaborative updates from the security community. This structure allows users to navigate complex technical categories efficiently to find the specific debuggers, disassemblers, and forensic utilities required for incident investigation. - [docling-project/docling](https://awesome-repositories.com/repository/docling-project-docling.md) (61,674 ⭐) — Docling is a modular framework designed for document parsing, layout analysis, and structured data extraction. It transforms unstructured files and web content into a unified, hierarchical data model that preserves the spatial and semantic relationships between text, tables, images, and layout elements. By normalizing diverse input formats into a consistent internal representation, the library enables uniform processing across various document types. The project distinguishes itself through a schema-driven approach that maps document regions to strongly-typed objects, ensuring data accuracy through validation against predefined templates. Its pipeline-based architecture supports pluggable processing backends, allowing for the dynamic integration of specialized engines for optical character recognition and complex visual layout analysis. Users can control parsing behavior and extraction parameters through declarative configuration files, facilitating integration into automated workflows and server-based architectures. The library provides both a programmatic interface and a command-line toolkit to support automated document processing and format conversion. It utilizes optional dependency management to allow for modular installation of specific features, such as media rendering or advanced processing capabilities, depending on the requirements of the application. - [daveskender/stock.indicators](https://awesome-repositories.com/repository/daveskender-stock-indicators.md) (0 ⭐) — Stock Indicators for .NET is a C# library package that produces financial market technical indicators. Send in historical price bars and get back desired indicators such as moving averages, Relative Strength Index, Stochastic Oscillator, Parabolic SAR, etc. Nothing more. - [vxunderground/malwaresourcecode](https://awesome-repositories.com/repository/vxunderground-malwaresourcecode.md) (18,415 ⭐) — This project is a curated archive and cybersecurity research dataset of raw source code from various malware families. It serves as a malware analysis library designed to help researchers study the inner workings of different threats and identify attack patterns across multiple platforms and programming languages. The repository supports security research by providing raw text distribution of original source code. This allows for the study of platform vulnerabilities, threat intelligence gathering, and the development of security products and detection signatures. The collection is organized as a flat-file repository using platform-specific directory mapping to group code by operating system or hardware architecture. It utilizes version-controlled source archiving to preserve historical versions of the source files. - [cheeriojs/cheerio](https://awesome-repositories.com/repository/cheeriojs-cheerio.md) (30,386 ⭐) — Cheerio is an HTML and XML parsing library and server-side DOM implementation. It functions as a markup manipulation tool and CSS selector engine, allowing users to parse, query, and modify HTML or XML documents in non-browser environments. The project provides a DOM-like tree representation of markup strings, enabling programmatic addition, removal, and modification of elements and attributes. It features a prototype-based plugin system that allows the extension of core functionality by adding custom methods to the document prototype. The library covers a broad range of capabilities including CSS selector querying, recursive tree traversal, and element collection filtering. It also includes utilities for attribute manipulation, CSS class management, node positioning, and the rendering of manipulated trees back into serialized HTML or XML strings. - [cert-manager/cert-manager](https://awesome-repositories.com/repository/cert-manager-cert-manager.md) (13,578 ⭐) — This project is a Kubernetes controller that automates the issuance, renewal, and lifecycle management of TLS certificates. It functions as a native extension to the cluster API, using custom resource definitions and reconciliation loops to maintain the desired state of certificates and trust bundles across distributed services. By integrating directly with the cluster's admission control and secret storage systems, it ensures that cryptographic identities are consistently provisioned and available for application workloads. The project distinguishes itself through its extensive support for automated domain validation and multi-provider integration. It orchestrates complex challenge processes—including those for private or split-horizon networks—to prove domain ownership without manual intervention. Beyond standard certificate management, it provides granular policy enforcement, allowing administrators to restrict issuance permissions, delegate certificate requests to specific service accounts, and enforce security requirements through custom metadata and issuer configurations. The platform covers a broad capability surface for securing network traffic and service communication. It supports diverse issuance workflows, ranging from public certificate authorities and ACME-based automation to private internal PKI infrastructures. The system also includes robust observability tools, such as operational metrics and status inspection, alongside administrative features for managing resource configurations, performing API migrations, and scaling controller components for high-availability environments. Installation and management are facilitated through standard cluster deployment workflows, with comprehensive command-line tools available for troubleshooting, configuration export, and lifecycle verification. - [vta/managed-and-tolled-lanes-feed-specification](https://awesome-repositories.com/repository/vta-managed-and-tolled-lanes-feed-specification.md) (0 ⭐) — Proposal for a schema that comprise the Managed and Tolled Lanes Tolling Feed Specification (MTLFS) and defines the fields used in all of those files. - [trickest/cve](https://awesome-repositories.com/repository/trickest-cve.md) (7,882 ⭐) — This project is a vulnerability intelligence database and aggregator that organizes common vulnerabilities and exposures alongside their corresponding proof-of-concept exploit code. It functions as a security vulnerability tracker and an indexed directory of public exploit payloads. The system monitors new security flaws and updates to known exploits through repository watches and atom feeds. It utilizes automated aggregation to collect vulnerability details from centralized repositories and discovers associated exploit code via reference analysis and global searches. The tool provides capabilities for product-specific exploit searching by matching software names and version strings. It also includes utilities for generating searchable HTML tables of vulnerabilities using templates and organizing security records within a yearly-indexed directory structure. - [p-ranav/indicators](https://awesome-repositories.com/repository/p-ranav-indicators.md) (3,399 ⭐) — Activity Indicators for Modern C++ - [cinnamon/kotaemon](https://awesome-repositories.com/repository/cinnamon-kotaemon.md) (25,139 ⭐) — Kotaemon is an orchestration framework designed for building modular, agentic workflows that integrate document processing, retrieval-augmented generation, and multi-step reasoning. It provides a comprehensive platform for developing document-based question answering systems, allowing users to chain language models, prompt templates, and external tools into complex, automated pipelines. The system distinguishes itself through a highly modular architecture that emphasizes component-based composition and schema-driven data exchange. It supports autonomous agents capable of decomposing complex queries through iterative processing and tool-calling, while its hybrid retrieval orchestration combines vector similarity and full-text search with re-ranking to improve the accuracy of retrieved context. The framework also features event-driven streaming, which delivers incremental results from long-running pipelines to the user interface in real-time. Beyond its core reasoning capabilities, the platform includes a suite of functional modules for the entire lifecycle of document-based applications. This includes multi-modal parsing for extracting text, tables, and visual elements from diverse file formats, as well as administrative tools for managing document collections, vector stores, and multi-user access. The system is designed to be interface-agnostic, allowing developers to wrap third-party libraries and external services into standardized, reusable processing units. The project provides a web-based user interface for interactive querying and configuration, and it supports deployment of private, isolated instances through predefined templates. - [jivoi/awesome-osint](https://awesome-repositories.com/repository/jivoi-awesome-osint.md) (26,831 ⭐) — This project is a comprehensive, community-curated directory of resources and methodologies for open-source intelligence gathering. It serves as a centralized reference framework for researchers, providing a structured index of specialized tools, databases, and search techniques used to collect and analyze publicly available information from across the global internet. The directory distinguishes itself through a hierarchical taxonomy that organizes complex investigative domains, ranging from cyber threat intelligence and digital forensic investigation to geospatial analysis and operational security. By leveraging a crowdsourced model, the repository ensures that its collection of investigative tools remains current, with a distributed network of contributors validating links and maintaining the integrity of the resource list. The project covers a broad capability surface, including advanced search operators, reverse image lookup, social network analysis, and domain infrastructure research. It also provides guidance on privacy-focused browsing and anonymity protection to support sensitive research workflows. The entire knowledge base is maintained as a version-controlled markdown repository, offering a portable and searchable index for professionals and researchers conducting deep web investigations or fact-checking tasks. - [neo451/feed.nvim](https://awesome-repositories.com/repository/neo451-feed-nvim.md) (205 ⭐) — Neovim feed reader, rss, atom and jsonfeed, all in lua - [thehive-project/thehive](https://awesome-repositories.com/repository/thehive-project-thehive.md) (3,891 ⭐) — TheHive is a security incident response platform and multi-tenant case management system. It functions as a Security Orchestration, Automation, and Response (SOAR) tool and a threat intelligence platform designed to coordinate security investigations by managing alerts, cases, and observables. The platform is distinguished by its multi-tenant architecture, which isolates data across different organizations while supporting selective cross-tenant sharing. It features a SOAR automation engine capable of executing sandboxed JavaScript logic to automate workflows and trigger response actions through external connectors. The system covers a broad range of capabilities, including incident lifecycle management, threat intelligence synchronization with frameworks like MITRE ATT&CK and MISP, and automated data ingestion. It provides extensive identity and access management through role-based access control and integration with various identity providers. The software can be installed on Linux, via Docker containers, or deployed to Kubernetes clusters using Helm charts. - [datatables/datatables](https://awesome-repositories.com/repository/datatables-datatables.md) (7,408 ⭐) — DataTables is a feature-rich HTML table library that transforms static HTML tables into interactive data grids with sorting, paging, filtering, and server-side processing support. It provides a client-side rendering engine that handles table rows, pagination, and sorting entirely in the browser, while also offering a server-side processing pipeline that offloads sorting, filtering, and paging operations to a backend for efficient handling of large datasets. The library distinguishes itself through its plugin-based extension system, which allows custom functions and widgets to modify table behavior or rendering, and its CSS framework integration layer that automatically adapts styling to match Bootstrap 3/4/5, Bulma, or other frameworks. It supports inline editing with row injection, responsive layout reflow that adjusts column visibility based on viewport size, and an Ajax data source abstraction for fetching remote data with configurable HTTP methods and parameter mapping. Additional capabilities include multi-column sorting, text search filtering that narrows rows in real time, dynamic row grouping, table content scrolling, and pagination controls. The library also provides form submission configuration for sending data as JSON or standard HTTP parameters, server-side column filtering, and conditional field validation for dependent form inputs. It offers internationalization for translating UI labels, frontend framework integration for React and Vue, and a custom package builder for selecting only needed components. The library can be installed via npm, yarn, NuGet, or Composer, and is also available through CDN hosting for fast delivery without local file management. - [smicallef/spiderfoot](https://awesome-repositories.com/repository/smicallef-spiderfoot.md) (18,189 ⭐) — SpiderFoot is an open-source reconnaissance and intelligence automation framework designed to streamline the collection and correlation of data for security investigations. It functions as a comprehensive platform that automates the querying of hundreds of public data sources to map digital footprints, identify exposed assets, and uncover potential security threats across an organization's external perimeter. The platform distinguishes itself through a modular, plugin-based architecture that executes data gathering tasks in parallel, supported by a directed graph data model that tracks relationships between discovered entities. It utilizes dynamic workflow orchestration and event-driven correlation to guide users through multi-stage investigations, automatically triggering follow-up queries based on newly discovered indicators of compromise. Beyond core reconnaissance, the system provides extensive capabilities for attack surface management, credential leak monitoring, and threat actor tracking. It supports proactive security operations by facilitating automated threat hunting, generating detection signatures, and simulating attack scenarios to identify visibility gaps. The platform also manages the full intelligence lifecycle, from aggregating disparate data feeds and enriching findings with contextual analysis to producing actionable reports for risk evaluation. - [bigskysoftware/htmx](https://awesome-repositories.com/repository/bigskysoftware-htmx.md) (48,210 ⭐) — HTMX is a hypermedia-driven frontend library that enables the creation of dynamic, asynchronous web applications by extending standard HTML attributes. It functions as a declarative engine that intercepts browser events to trigger network requests, allowing developers to update specific regions of the document with server-rendered HTML fragments. By shifting the logic of UI composition to the server, it minimizes the need for complex client-side state management and imperative JavaScript. The library distinguishes itself through a progressive enhancement workflow that ensures web interfaces remain functional as standard HTML while upgrading to interactive experiences when JavaScript is enabled. It provides sophisticated control over content updates, including the ability to patch multiple disconnected page regions in a single response and synchronize DOM changes with browser-native CSS transitions. Furthermore, it supports real-time interactivity by establishing persistent, bi-directional communication channels through declarative WebSocket and server-sent event configurations. Beyond its core engine, the framework includes a comprehensive suite of utilities for managing browser history, coordinating concurrent network requests, and handling form validation. It offers flexible configuration for response processing and allows developers to extend component behavior through event-driven hooks. The project is designed for ease of integration, requiring only a script inclusion to begin transforming standard links and forms into asynchronous, hypermedia-driven interactions. - [checkly/terraform-provider-checkly](https://awesome-repositories.com/repository/checkly-terraform-provider-checkly.md) (44 ⭐) — Terraform provider for the Checkly monitoring service - [ivre/ivre](https://awesome-repositories.com/repository/ivre-ivre.md) (4,065 ⭐) — This project is a network reconnaissance framework and internet metadata database used for collecting, storing, and analyzing data from active scanners and passive traffic captures. It functions as a threat intelligence aggregator and passive traffic analysis tool, merging scan results from multiple tools into a unified dataset for security investigation. The system distinguishes itself through its ability to visualize network assets using heatmaps and geographic charts to correlate autonomous systems and domain names. It provides external attack surface management by aggregating metadata to monitor the security posture of public internet assets and mapping connections between nodes to track communication patterns. The platform covers a broad range of capabilities including active asset scanning, firewall log ingestion, and the archiving of network certificates and keys. It includes a search service for indexing devices across private or public internet ranges and integrates third-party network tools via a plugin-based system. Access to the data is managed through a web interface using key-based authentication and external headers. - [awesome-selfhosted/awesome-selfhosted](https://awesome-repositories.com/repository/awesome-selfhosted-awesome-selfhosted.md) (299,516 ⭐) — This project is a community-curated directory of open-source software designed for deployment in private server environments and home labs. It serves as a comprehensive resource for discovering independent, self-hosted alternatives to mainstream cloud services, enabling users to maintain full data ownership and control over their digital infrastructure. The directory is structured through a hierarchical taxonomy that organizes a vast collection of applications into logical categories, ranging from media management and data analytics to private communication and team productivity tools. It distinguishes itself through a collaborative peer-review process, where community members validate the quality and relevance of each submission to ensure the directory remains accurate and reliable. The project covers a broad capability surface, including infrastructure automation, container-based service deployment, and declarative configuration management. These tools assist users in maintaining reproducible server environments and managing complex service dependencies across private hardware. The directory is maintained as a version-controlled repository, ensuring that all updates and community-driven changes are tracked and transparent. - [owasp/threat-dragon](https://awesome-repositories.com/repository/owasp-threat-dragon.md) (1,494 ⭐) — An open source threat modeling tool from OWASP - [opencti-platform/opencti](https://awesome-repositories.com/repository/opencti-platform-opencti.md) (8,812 ⭐) — OpenCTI is a cyber threat intelligence platform and knowledge base used to store, manage, and analyze technical security data. It functions as a threat intelligence visualization tool and an enterprise security data orchestrator that maps relationships between threat actors, malware, and vulnerabilities. The platform utilizes the STIX and TAXII standards for data representation and exchange, allowing for the sharing and receiving of standardized intelligence bundles. It distinguishes itself by converting complex security information into visual relationship diagrams and geographic maps to identify threat patterns and the physical origin of threats. The system covers broad capability areas including real-time threat streaming, automated data feed generation, and cybersecurity infrastructure orchestration. It also provides access control features such as FIPS compliance enforcement and the configuration of public, unauthenticated data feeds. - [jtamos/indicators.jl](https://awesome-repositories.com/repository/jtamos-indicators-jl.md) (226 ⭐) — Financial market technical analysis & indicators in Julia - [emmabostian/developer-portfolios](https://awesome-repositories.com/repository/emmabostian-developer-portfolios.md) (20,754 ⭐) — This project is a community-driven directory of developer portfolios designed to serve as a resource for professional identity development and design inspiration. It functions as a structured data repository that collects and organizes personal website metadata, enabling users to discover and share examples of professional online presence. The platform operates through a collaborative model where content is managed via version control workflows. By utilizing pull requests, the project facilitates community-driven growth, allowing contributors to submit and maintain portfolio entries within a standardized, open-source framework. The system employs automated tools to process these contributions, transforming raw source files into structured, machine-readable data. This approach supports static data aggregation and provides capabilities for exporting portfolio collections, which simplifies integration with external software applications and data analysis workflows. - [dysonance/indicators.jl](https://awesome-repositories.com/repository/dysonance-indicators-jl.md) (226 ⭐) — Financial market technical analysis & indicators in Julia - [continuedev/continue](https://awesome-repositories.com/repository/continuedev-continue.md) (33,716 ⭐) — Continue is an automated code review platform that integrates AI agents directly into the software development lifecycle. By executing custom validation rules against pull request diffs, it provides immediate feedback through repository status checks, allowing teams to enforce quality, security, and documentation standards before manual review begins. The system distinguishes itself through a file-based configuration model where validation logic is defined in version-controlled markdown files. These files act as system prompts that guide autonomous agents in evaluating code changes. This approach enables agentic task chaining, where specialized workflows—such as security scanning, test coverage validation, and UI rendering verification—are orchestrated to analyze code against project-specific criteria. Beyond automated reviews, the platform includes a local-first execution engine that allows developers to run and refine these checks from the command line before committing changes. The system also incorporates a feedback loop that tracks user acceptance and rejection of suggestions, enabling the refinement of check logic over time to reduce noise and improve the accuracy of automated findings. The project provides a command-line interface for managing these workflows and integrates with repository webhooks to trigger analysis automatically upon pull request submission. - [owasp-amass/amass](https://awesome-repositories.com/repository/owasp-amass-amass.md) (14,155 ⭐) — Amass is an attack surface management tool designed to identify, map, and inventory an organization's internet-facing digital assets. It functions as a security asset discovery engine that systematically expands an organization's known infrastructure footprint through recursive domain name resolution and the collection of intelligence from diverse public data sources. The platform distinguishes itself by utilizing a graph-based modeling approach to organize discovered resources. By maintaining a persistent graph database, it tracks the relationships between infrastructure components and normalizes data from multiple intelligence feeds into a unified schema. This allows for the visualization of complex network topologies and the long-term monitoring of infrastructure changes. The framework supports comprehensive security visibility by integrating modular data collection tasks and asynchronous processing to handle large-scale network scanning. It provides a centralized repository for asset records, enabling consistent tracking and analysis of an entity's technical landscape for threat intelligence and vulnerability identification. - [sbilly/awesome-security](https://awesome-repositories.com/repository/sbilly-awesome-security.md) (14,022 ⭐) — This project is a comprehensive, curated directory of cybersecurity resources, software, and documentation designed to support system and network protection. It serves as a centralized knowledge base and index for security professionals, aggregating industry-standard practices and open-source tools across a wide range of technical domains. The repository distinguishes itself by providing a structured collection of methodologies and frameworks for security operations. It covers critical areas including threat intelligence, digital forensics, infrastructure auditing, and vulnerability assessment management. By organizing these materials, the project assists in the discovery and implementation of solutions for network monitoring, incident response, and the maintenance of consistent security configurations across diverse environments. - [dereuromark/cakephp-feed](https://awesome-repositories.com/repository/dereuromark-cakephp-feed.md) (0 ⭐) — A CakePHP plugin containing RssView and AtomView classes for generating RSS 2.0 and Atom 1.0 feeds. - [axios/axios](https://awesome-repositories.com/repository/axios-axios.md) (109,077 ⭐) — Axios is an isomorphic, promise-based HTTP client designed for making asynchronous network requests across different JavaScript execution environments, including the browser and Node.js. It functions as a JSON API client that serializes JavaScript objects into JSON and parses server responses into structured data. The project features a system for managing reusable client instances with shared configurations, such as base URLs and default settings. It includes a mechanism for intercepting outgoing requests and incoming responses globally, allowing data to be transformed before it reaches the application logic. The library provides broad capabilities for API integration, including automated request retries with exponential backoff, request cancellation via signals, and the mocking of network traffic for testing. It also covers security and performance through CSRF protection, sensitive header stripping, GET request caching, and response decompression. The network layer utilizes an adapter-based abstraction to maintain a consistent API across various runtimes. - [filamentphp/filament](https://awesome-repositories.com/repository/filamentphp-filament.md) (31,215 ⭐) — Filament is a full-stack framework for building administrative panels and management interfaces within the Laravel ecosystem. It provides a declarative, component-based architecture that allows developers to construct complex, data-driven applications using server-side configuration objects rather than manual HTML. By inspecting database model structures and relationships, the framework automates the generation of CRUD interfaces, forms, and data tables, significantly reducing boilerplate code. The project distinguishes itself through a highly modular and extensible design that supports custom plugins, themes, and specialized dashboard widgets. It features a fluent, object-oriented API for defining UI components, validation rules, and data persistence logic, while maintaining application state between the browser and server over a persistent connection. Developers can further customize the interface through dynamic configuration, custom Blade view embedding, and a comprehensive system for managing user identity, multi-tenancy, and role-based access control. Beyond core CRUD capabilities, the framework includes advanced tools for data presentation, such as interactive charts, statistical summaries, and global search functionality. It also provides robust support for complex data entry, including multistep wizards, repeatable form blocks, and file management. The system is designed for reliability, offering built-in observability, automated testing helpers, and performance optimizations like asset scoping and client-side navigation. The framework is distributed as a set of packages that integrate directly into existing Laravel applications, with command-line utilities available to scaffold resources and administrative components. - [dizzib/bible-feed](https://awesome-repositories.com/repository/dizzib-bible-feed.md) (0 ⭐) — This repository contains the open-source code for the Bible Feed app for Android and iOS. - [crowdsecurity/crowdsec](https://awesome-repositories.com/repository/crowdsecurity-crowdsec.md) (12,574 ⭐) — CrowdSec is a collaborative, distributed security engine designed for threat detection and infrastructure protection. It functions as an intrusion detection system that parses logs and network traffic to identify malicious patterns, utilizing a bucket-based threshold detection model to aggregate events and trigger alerts. The platform is built on a modular architecture that includes a centralized local API server for managing security signals and a relational database for persistent storage of remediation decisions. What distinguishes the project is its decoupled enforcement model, which offloads active blocking to lightweight external components known as bouncers. These bouncers query the central API to synchronize threat intelligence and apply real-time remediation across distributed environments. The system also features a hub-based configuration management framework, allowing users to download and deploy community-curated security scenarios, parsers, and collections to ensure consistent protection against evolving threats. The platform provides a comprehensive suite of tools for security operations, including automated log parsing pipelines, event-driven plugin systems for notification workflows, and extensive command-line utilities for infrastructure management. It supports flexible deployment patterns across standalone, containerized, and cloud-native environments, enabling centralized orchestration of security agents and fleet-wide monitoring of threat activity. The project includes a robust documentation and command-line interface that facilitates the lifecycle management of security components, from initial service discovery and configuration to the validation of detection logic and the auditing of active security policies. - [dylang/npm-check](https://awesome-repositories.com/repository/dylang-npm-check.md) (6,643 ⭐) — npm-check is a command-line tool that audits a project's npm dependencies, comparing local package versions against the npm registry to identify outdated, unused, or incorrect entries. It scans both `package.json` and `node_modules`, and can also inspect globally installed npm packages for the same issues. The tool distinguishes itself by offering multiple modes of operation. It can automatically update all outdated dependencies to their latest versions without interaction, suitable for automated scripts. Alternatively, it provides an interactive terminal interface that lets users review and selectively upgrade individual packages. It also includes a source-code import scanner that parses JavaScript files for `require` and `import` statements to detect dependencies listed in `package.json` that are never actually used. Additional capabilities include filtering audits by environment (production or development dependencies), ignoring specific packages via glob patterns, saving updated dependencies with exact version numbers, and reading configuration from a `.npmcheckrc` file for persistent settings. The tool also flags dependency errors such as registry communication failures or parsing issues. - [kigster/simple-feed](https://awesome-repositories.com/repository/kigster-simple-feed.md) (335 ⭐) — This gem implements a flexible time-ordered activity feeds commonly used within social networking applications. As events occur, they are pushed into the Feed and distributed to all users that need to see the event. Upon the user visiting their "feed page", a pre-populated ordered list of events is returned by the library. - [ytisf/thezoo](https://awesome-repositories.com/repository/ytisf-thezoo.md) (13,126 ⭐) — TheZoo is a centralized repository and management system designed for the storage, organization, and retrieval of live malicious software samples. It provides a structured environment for security researchers and educators to access, track, and analyze dangerous code for the purpose of threat intelligence and defense development. The system utilizes a command-line interface to manage the lifecycle of malware samples, including the preparation of new submissions and the querying of a centralized database. To ensure safety and authenticity, the platform stores binaries in password-protected, encrypted archives and performs cryptographic hash verification on all samples. This approach allows for the controlled distribution and study of malicious code while preventing accidental execution. The repository supports comprehensive research workflows by indexing samples based on specific attributes such as platform and architecture. This metadata-driven organization enables efficient searching and categorization, facilitating the systematic examination of attack vectors and emerging cyber threats. - [0x4d31/awesome-threat-detection](https://awesome-repositories.com/repository/0x4d31-awesome-threat-detection.md) (4,618 ⭐) — ✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️ - [davila7/claude-code-templates](https://awesome-repositories.com/repository/davila7-claude-code-templates.md) (20,933 ⭐) — Claude Code Templates is a comprehensive framework for orchestrating specialized AI agents and automating development workflows within local environments. It provides a structured system for defining, configuring, and deploying AI personas that handle specific technical tasks, ranging from backend architecture and frontend implementation to security auditing and infrastructure management. The project distinguishes itself through a configuration-driven approach that allows teams to standardize development environments and share reusable agent definitions across projects. It includes a robust CLI toolkit for managing the entire agent lifecycle, from discovery and installation to execution and performance monitoring. By utilizing standardized protocols and modular function definitions, it enables seamless integration of external services and local tools into the assistant's capabilities. Beyond core agent management, the platform offers extensive support for workflow automation, including event-driven hooks, custom slash commands, and automated testing pipelines. It incorporates security-focused features such as granular permission enforcement, sandbox execution environments, and automated secret scanning to ensure safe operation. The system also provides observability tools, including real-time dashboards for tracking agent performance, token usage, and conversation history.