Cisco-Talos/IOCs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Cisco-Talos/IOCs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Cisco-Talos/IOCs)

Close

Cisco-Talos / IOCsView on GitHubMore

• External links
• Readme badge

Indicators of Compromise

☆272May 19, 2026Updated this week

Alternatives and similar repositories for IOCs

Users that are interested in IOCs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ThreatLabz / iocs

  View on GitHub
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆79Jan 26, 2026Updated 3 months ago
• HarfangLab / iocs

  View on GitHub
  Indicators of compromise
  ☆19May 18, 2026Updated last week
• sophoslabs / IoCs

  View on GitHub
  Sophos-originated indicators-of-compromise from published reports
  ☆663May 14, 2026Updated last week
• pan-unit42 / iocs

  View on GitHub
  Indicators from Unit 42 Public Reports
  ☆727Aug 17, 2025Updated 9 months ago
• SEKOIA-IO / Community

  View on GitHub
  Welcome to the SEKOIA.IO Community repository!
  ☆185May 7, 2026Updated 2 weeks ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• WithSecureLabs / iocs

  View on GitHub
  ☆19Apr 16, 2026Updated last month
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆111Mar 9, 2026Updated 2 months ago
• eset / malware-ioc

  View on GitHub
  Indicators of Compromises (IOC) of our various investigations
  ☆1,952May 14, 2026Updated last week
• hpthreatresearch / iocs

  View on GitHub
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆28Apr 10, 2024Updated 2 years ago
• volexity / threat-intel

  View on GitHub
  Signatures and IoCs from public Volexity blog posts.
  ☆367Dec 4, 2025Updated 5 months ago
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆716Updated this week
• sroberts / awesome-iocs

  View on GitHub
  A collection of sources of indicators of compromise.
  ☆981May 8, 2025Updated last year
• RussianPanda95 / Yara-Rules

  View on GitHub
  Repository of Yara Rules
  ☆143Apr 29, 2026Updated 3 weeks ago
• hvs-consulting / ioc_signatures

  View on GitHub
  Repository with selected IOCs and YARA rules for threat hunting.
  ☆35Apr 8, 2026Updated last month
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• The-DFIR-Report / Yara-Rules

  View on GitHub
  ☆82Sep 29, 2025Updated 7 months ago
• Yamato-Security / hayabusa-rules

  View on GitHub
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆218May 3, 2026Updated 3 weeks ago
• Securonix / AutonomousThreatSweeper

  View on GitHub
  Threat Hunting queries for various attacks
  ☆244Jan 16, 2026Updated 4 months ago
• bartblaze / Yara-rules

  View on GitHub
  Collection of private Yara rules.
  ☆383Jan 28, 2026Updated 3 months ago
• RustyNoob-619 / 100-Days-of-YARA-2024

  View on GitHub
  ☆21Apr 19, 2024Updated 2 years ago
• ThreatMon / ThreatMon-Reports-IOC

  View on GitHub
  ☆54Aug 19, 2025Updated 9 months ago
• anyrun / YARA

  View on GitHub
  Maintained by the ANY.RUN team, this repository provides YARA rules to help detect and classify various malware families and other malici…
  ☆28Nov 1, 2025Updated 6 months ago
• Zimperium / IOC

  View on GitHub
  IOCs from zLabs research
  ☆55Updated this week
• NextronSystems / velociraptor-artifacts-thor

  View on GitHub
  Thor Artifacts for Velociraptor
  ☆19Dec 2, 2025Updated 5 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• eSentire / iocs

  View on GitHub
  ☆60May 8, 2026Updated 2 weeks ago
• Abjuri5t / SarlackLab

  View on GitHub
  ☆34Apr 29, 2026Updated 3 weeks ago
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,955May 15, 2026Updated last week
• draugnet / draugnet

  View on GitHub
  Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …
  ☆20Mar 24, 2026Updated 2 months ago
• rmceoin / gmalvertising

  View on GitHub
  Hacked up scripts to perform google searches
  ☆16Apr 26, 2024Updated 2 years ago
• reversinglabs / reversinglabs-yara-rules

  View on GitHub
  ReversingLabs YARA Rules
  ☆918Nov 3, 2025Updated 6 months ago
• rad9800 / RansomFS

  View on GitHub
  ☆31Feb 28, 2025Updated last year
• curated-intel / The-CTI-Research-Guide

  View on GitHub
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆120Oct 29, 2024Updated last year
• blackorbird / APT_REPORT

  View on GitHub
  Interesting APT Report Collection And Some Special IOCs
  ☆2,986May 9, 2026Updated 2 weeks ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• lasq88 / socgholish_finder

  View on GitHub
  ☆14Mar 9, 2023Updated 3 years ago
• PaloAltoNetworks / Unit42-timely-threat-intel

  View on GitHub
  A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…
  ☆520Updated this week
• SIFalcon / Detection

  View on GitHub
  ☆24Jul 7, 2023Updated 2 years ago
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,694May 10, 2026Updated 2 weeks ago
• k4nfr3 / XDR_scripts

  View on GitHub
  A few XDR Scripts
  ☆23Mar 19, 2025Updated last year
• jeFF0Falltrades / YARA-Signatures

  View on GitHub
  A collection of my public YARA signatures for various malware families
  ☆30Sep 20, 2024Updated last year
• filescanio / fsYara

  View on GitHub
  A collection of curated YARA rules used as part of the Filescan.io service
  ☆22Apr 15, 2026Updated last month