Standard-Format Threat Intelligence Feeds
☆130May 17, 2026Updated last week
Alternatives and similar repositories for Public-Intelligence-Feeds
Users that are interested in Public-Intelligence-Feeds are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Zeek-Formatted Threat Intelligence Feeds☆398Updated this week
- Daily updated malware indicator lists from TR-CERT (USOM), including parsed malicious URLs, IPs, and domains.☆15Updated this week
- Automatically created C2 Feeds☆716Updated this week
- ☆34Apr 29, 2026Updated 3 weeks ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20May 25, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- Active C2 IoCs☆99Nov 28, 2022Updated 3 years ago
- This repository contains advanced threat hunting scripts for Cisco Secure Endpoint API. The scripts leverage the AMP API to hunt for thre…☆14Apr 21, 2026Updated last month
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆36Nov 13, 2025Updated 6 months ago
- 🐟 PhishTank Blocklist for Pi-hole☆13Updated this week
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.☆28Apr 10, 2024Updated 2 years ago
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆143Apr 20, 2023Updated 3 years ago
- Aggregation of lists of malicious IP addresses (C2, malware, phishing), to be blocked in the LAN > WAN direction, integrated into firewal…☆26Updated this week
- ☆45Dec 15, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- A collection of tips for using MISP.☆76Dec 11, 2024Updated last year
- pyJARM is a library for doing JARM fingerprinting using python☆50Mar 23, 2025Updated last year
- ☆96Apr 8, 2026Updated last month
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34May 17, 2021Updated 5 years ago
- Spydi ThreatIntel Feed is built on open-source threat intelligence, community-maintained blocklists, and public security research.☆52Updated this week
- Simple Script to Help You Find All Files Has Been Modified, Accessed, and Created In A Range Time.☆27Dec 1, 2022Updated 3 years ago
- Machine-readable .txt IP blocklist from ThreatFox by Abuse.ch, updated every hour.☆55Updated this week
- Various blocklists☆15Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Mirror of https://gitlab.com/curben/phishing-filter☆30Updated this week
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆88May 12, 2026Updated last week
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆79Jan 26, 2026Updated 3 months ago
- sample input data for zq☆15Nov 21, 2025Updated 6 months ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆835May 19, 2026Updated last week
- Indicators of compromise☆19May 18, 2026Updated last week
- Links to malware-related YARA rules☆15Sep 29, 2022Updated 3 years ago
- This repository contains Malicious Indicator of Compromise (IOC) blocklist for MISP, firewall which is vital for cybersecurity profession…☆122Sep 17, 2025Updated 8 months ago
- Code and yara rules to detect and analyze Cobalt Strike☆273May 5, 2021Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Threat-Intel repository. API: https://github.com/davidonzo/apiosintDS☆165Oct 18, 2024Updated last year
- ☆10Dec 24, 2022Updated 3 years ago
- Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol☆25May 30, 2024Updated last year
- Rudimentary IP and URL threat feeds sourced from The Fakelabs Project.☆10Dec 13, 2025Updated 5 months ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆209Jul 21, 2022Updated 3 years ago
- A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…☆24Dec 11, 2023Updated 2 years ago
- Ubuntu 24.04 CIS Benchmark Hardening Script☆36Jan 23, 2026Updated 4 months ago