Free Threat Intelligence Tools
Collect, analyze, and share cyber threat intelligence with free and open source tools. Browse CTI platforms, MISP integrations, IOC feeds, and threat hunting tools.
Loading...
Related Security Domains
Frequently Asked Questions
What is cyber threat intelligence?
Cyber threat intelligence (CTI) is evidence-based knowledge about existing or emerging threats, including context, mechanisms, indicators, and actionable advice. It helps organizations understand who is attacking them, why, and how — enabling proactive defense rather than reactive response.
What is MISP and is it free?
MISP (Malware Information Sharing Platform) is a free, open source threat intelligence platform for sharing, storing, and correlating indicators of compromise. It's widely used by CERTs, ISACs, and enterprises to share threat data in a structured format (STIX/TAXII compatible).
What are IOCs in cybersecurity?
Indicators of Compromise (IOCs) are artifacts observed in a network or system that indicate a potential intrusion. Common IOCs include malicious IP addresses, domain names, file hashes, URLs, and registry keys. Tools like MISP, OpenCTI, and VirusTotal help manage and share IOC databases.
What is the difference between strategic and tactical threat intelligence?
Strategic intelligence is high-level, intended for executives and board members — covering threat actor motivations, geopolitical context, and business risk. Tactical intelligence is technical and operational — covering TTPs, malware signatures, and IOCs used by security analysts and SOC teams.