Alternatives and similar repositories for IOCs

Users that are interested in IOCs are comparing it to the libraries listed below

• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆48Updated 5 years ago
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆76Updated last month
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆110Updated 2 months ago
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆14Updated 2 years ago
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated 2 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆39Updated 6 months ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• lasq88 / socgholish_finder
  ☆14Updated 2 years ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated 2 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• cti-cmm / framework
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆42Updated 3 weeks ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated 2 years ago
• CronUp / Malware-IOCs
  ☆96Updated 9 months ago
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 4 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆55Updated last year
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 3 years ago
• intel471 / CU-GIR
  Cyber Underground General Intelligence Requirements
  ☆97Updated 2 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 3 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• ruppde / yara_rules
  Yara rules
  ☆22Updated 2 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆110Updated 3 weeks ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆100Updated 2 years ago
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆39Updated last month
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 3 years ago
• stvemillertime / Cerebro
  Scripts and lists to help generate YARA friendly string mutations
  ☆22Updated 2 years ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated last year
• Neo23x0 / ThreatResearch-Reporting-Guide
  Offensive Research Guide to Help Defense Improve Detection
  ☆32Updated 3 years ago
• strozfriedberg / QELP
  Quick ESXi Log Parser
  ☆28Updated 3 months ago
• openrelik / openrelik-server
  The backend server handling API requests and task management
  ☆55Updated this week