PaloAltoNetworks / Unit42-Threat-Intelligence-Article-InformationLinks
This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networks Unit 42 website.
☆88Updated 2 weeks ago
Alternatives and similar repositories for Unit42-Threat-Intelligence-Article-Information
Users that are interested in Unit42-Threat-Intelligence-Article-Information are comparing it to the libraries listed below
Sorting:
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated 11 months ago
- A simple tool designed to create Atomic Red Team tests with ease.☆46Updated 5 months ago
- ☆37Updated last year
- ☆24Updated 6 months ago
- NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.☆48Updated 7 months ago
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files☆127Updated last year
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆78Updated 4 months ago
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆52Updated 5 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆131Updated last week
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆91Updated last year
- ☆68Updated 7 months ago
- A collection of CVEs weaponized by ransomware operators☆121Updated last week
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆132Updated 7 months ago
- ☆82Updated 9 months ago
- ☆74Updated this week
- Vibe Malware Triage - MCP server for static PE analysis.☆68Updated 3 months ago
- This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe☆34Updated last year
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆144Updated last month
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 8 months ago
- ☆48Updated 6 months ago
- Persist like a Dodder☆64Updated 3 months ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆48Updated 5 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated 2 months ago
- Free training course offered at Hack Space Con 2023☆138Updated 2 years ago
- IOCs and notes related to malware☆25Updated last month
- Living Off Security Tools☆45Updated 10 months ago
- Cheat sheet to detect and remove linux kernel rootkit☆68Updated 8 months ago
- information about ransomware groups (Ransomware Analysis Notes)☆38Updated last year
- Modular framework for automating triaging, malware analysis, and analyst workflows☆42Updated 3 months ago