This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networks Unit 42 website.
☆116Nov 17, 2025Updated 5 months ago
Alternatives and similar repositories for Unit42-Threat-Intelligence-Article-Information
Users that are interested in Unit42-Threat-Intelligence-Article-Information are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Indicators of compromise☆17Jan 29, 2026Updated 3 months ago
- single-threaded event driven sleep obfuscation poc for linux☆38Jun 14, 2025Updated 10 months ago
- A tool for fetching DFIR and other GitHub tools.☆27Aug 2, 2025Updated 9 months ago
- A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…☆513Updated this week
- ☆59Dec 10, 2025Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Prisma SASE SDK☆12Feb 19, 2026Updated 2 months ago
- Static-Code-Analysis-Helper helps you perform static code analysis.☆32Feb 20, 2026Updated 2 months ago
- this repository made to help me All Dorking repositories find for one location☆36Aug 31, 2025Updated 8 months ago
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.☆22Jan 5, 2025Updated last year
- Windows User-Mode Shellcode Development Framework (WUMSDF)☆132Nov 17, 2025Updated 5 months ago
- Set of PoC to abuse Windows minifilters functionality☆76May 1, 2026Updated last week
- a repo for utilizing a base64 like encoding scheme + AES Encryption using Emojis☆13Mar 16, 2025Updated last year
- ☆15Sep 17, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆16Sep 4, 2020Updated 5 years ago
- ☆12Aug 16, 2024Updated last year
- Different tools for Microsoft Hyper-V researching☆73Mar 25, 2026Updated last month
- Vectored Exception Handling Squared☆30Dec 27, 2025Updated 4 months ago
- ☆22Jan 31, 2023Updated 3 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆281Dec 20, 2025Updated 4 months ago
- A Model Context Protocol (MCP) server that integrates Volatility 3 memory forensics framework with Claude☆38Jul 7, 2025Updated 10 months ago
- ☆33Dec 10, 2024Updated last year
- ☆16Sep 5, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A few STUXNET samples and live traffic captures from July 2010 while many stuxnet implants were still operational.☆28Sep 17, 2024Updated last year
- Read only mirror. To contribute or submit issues, please go to the website link --->☆15Jul 25, 2023Updated 2 years ago
- Command and Control Framework using powershell implants☆36Jun 17, 2025Updated 10 months ago
- Simple 2-zone internet gateway configuration for home use☆12Jul 25, 2023Updated 2 years ago
- System Call Integrity Layer - experimental security research☆26Apr 14, 2026Updated 3 weeks ago
- Common framework for designing a detection and response framework for the most common MFT solutions☆16Aug 4, 2023Updated 2 years ago
- ☆19May 22, 2024Updated last year
- Harness to issue Virtual Secure Mode (VSM) "secure calls" from VTL 0 to VTL 1☆79Sep 8, 2025Updated 8 months ago
- Tool designed to exfiltrate OneDrive Business OCR Data☆127Jan 27, 2025Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Config files for my GitHub profile.☆14May 7, 2023Updated 3 years ago
- example using NtCreateUserProcess in rust☆19Jan 20, 2025Updated last year
- A collection of open source threat detection rules created by Cyber Castle's team.☆14Jun 2, 2022Updated 3 years ago
- A repository of credential stealer formats☆253Jun 10, 2025Updated 11 months ago
- ☆13Dec 29, 2022Updated 3 years ago
- Scripts to decloak Linux Loadable Kernel Module (LKM) stealth rootkits.☆35Sep 28, 2025Updated 7 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆101Apr 20, 2026Updated 2 weeks ago