Cisco-Talos/IOCs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Cisco-Talos/IOCs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Cisco-Talos/IOCs)

Close

Cisco-Talos / IOCsView on GitHubMore

• External links
• Readme badge

Indicators of Compromise

☆269Apr 16, 2026Updated 2 weeks ago

Alternatives and similar repositories for IOCs

Users that are interested in IOCs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ThreatLabz / iocs

  View on GitHub
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆79Jan 26, 2026Updated 3 months ago
• HarfangLab / iocs

  View on GitHub
  Indicators of compromise
  ☆17Jan 29, 2026Updated 3 months ago
• sophoslabs / IoCs

  View on GitHub
  Sophos-originated indicators-of-compromise from published reports
  ☆661Mar 31, 2026Updated last month
• pan-unit42 / iocs

  View on GitHub
  Indicators from Unit 42 Public Reports
  ☆728Aug 17, 2025Updated 8 months ago
• SEKOIA-IO / Community

  View on GitHub
  Welcome to the SEKOIA.IO Community repository!
  ☆184Updated this week
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• WithSecureLabs / iocs

  View on GitHub
  ☆19Apr 16, 2026Updated 2 weeks ago
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆111Mar 9, 2026Updated last month
• eset / malware-ioc

  View on GitHub
  Indicators of Compromises (IOC) of our various investigations
  ☆1,948Apr 23, 2026Updated last week
• hpthreatresearch / iocs

  View on GitHub
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆28Apr 10, 2024Updated 2 years ago
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆677Updated this week
• volexity / threat-intel

  View on GitHub
  Signatures and IoCs from public Volexity blog posts.
  ☆367Dec 4, 2025Updated 5 months ago
• sroberts / awesome-iocs

  View on GitHub
  A collection of sources of indicators of compromise.
  ☆974May 8, 2025Updated 11 months ago
• RussianPanda95 / Yara-Rules

  View on GitHub
  Repository of Yara Rules
  ☆143Updated this week
• hvs-consulting / ioc_signatures

  View on GitHub
  Repository with selected IOCs and YARA rules for threat hunting.
  ☆35Apr 8, 2026Updated 3 weeks ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• The-DFIR-Report / Yara-Rules

  View on GitHub
  ☆82Sep 29, 2025Updated 7 months ago
• Yamato-Security / hayabusa-rules

  View on GitHub
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆217Updated this week
• Securonix / AutonomousThreatSweeper

  View on GitHub
  Threat Hunting queries for various attacks
  ☆244Jan 16, 2026Updated 3 months ago
• bartblaze / Yara-rules

  View on GitHub
  Collection of private Yara rules.
  ☆380Jan 28, 2026Updated 3 months ago
• RustyNoob-619 / 100-Days-of-YARA-2024

  View on GitHub
  ☆21Apr 19, 2024Updated 2 years ago
• ThreatMon / ThreatMon-Reports-IOC

  View on GitHub
  ☆54Aug 19, 2025Updated 8 months ago
• anyrun / YARA

  View on GitHub
  Maintained by the ANY.RUN team, this repository provides YARA rules to help detect and classify various malware families and other malici…
  ☆28Nov 1, 2025Updated 6 months ago
• Zimperium / IOC

  View on GitHub
  IOCs from zLabs research
  ☆54Apr 16, 2026Updated 2 weeks ago
• NextronSystems / velociraptor-artifacts-thor

  View on GitHub
  Thor Artifacts for Velociraptor
  ☆19Dec 2, 2025Updated 5 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• eSentire / iocs

  View on GitHub
  ☆57Apr 16, 2026Updated 2 weeks ago
• Abjuri5t / SarlackLab

  View on GitHub
  ☆34Updated this week
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,931Updated this week
• draugnet / draugnet

  View on GitHub
  Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …
  ☆20Mar 24, 2026Updated last month
• rmceoin / gmalvertising

  View on GitHub
  Hacked up scripts to perform google searches
  ☆16Apr 26, 2024Updated 2 years ago
• reversinglabs / reversinglabs-yara-rules

  View on GitHub
  ReversingLabs YARA Rules
  ☆911Nov 3, 2025Updated 6 months ago
• rad9800 / RansomFS

  View on GitHub
  ☆31Feb 28, 2025Updated last year
• curated-intel / The-CTI-Research-Guide

  View on GitHub
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆119Oct 29, 2024Updated last year
• blackorbird / APT_REPORT

  View on GitHub
  Interesting APT Report Collection And Some Special IOCs
  ☆2,974Apr 23, 2026Updated last week
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• PaloAltoNetworks / Unit42-timely-threat-intel

  View on GitHub
  A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…
  ☆500Updated this week
• lasq88 / socgholish_finder

  View on GitHub
  ☆14Mar 9, 2023Updated 3 years ago
• SIFalcon / Detection

  View on GitHub
  ☆23Jul 7, 2023Updated 2 years ago
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,687Apr 13, 2026Updated 3 weeks ago
• jeFF0Falltrades / YARA-Signatures

  View on GitHub
  A collection of my public YARA signatures for various malware families
  ☆30Sep 20, 2024Updated last year
• filescanio / fsYara

  View on GitHub
  A collection of curated YARA rules used as part of the Filescan.io service
  ☆22Apr 15, 2026Updated 2 weeks ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds

  View on GitHub
  Zeek-Formatted Threat Intelligence Feeds
  ☆398Apr 28, 2026Updated last week