Lists of VPN providers (automatically updated)
☆772Updated this week
Alternatives and similar repositories for lists_vpn
Users that are interested in lists_vpn are comparing it to the libraries listed below
Sorting:
- Lists of VPN providers (automatically updated; maintainer: @janderedev)☆14Jan 29, 2023Updated 3 years ago
- ip addresses of VPNs�☆71Updated this week
- Daily updated list of IP addresses / CIDR blocks used by data centers, cloud service providers, servers, etc.☆202Updated this week
- Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.☆407Nov 15, 2025Updated 3 months ago
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- Hourly checked and updated list of IP Addresses of Tor and Tor Exit Nodes☆360Feb 27, 2024Updated 2 years ago
- Here are some tools I developed to help analyze malware☆11Nov 8, 2023Updated 2 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365☆24Oct 9, 2024Updated last year
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆23Dec 18, 2024Updated last year
- A dataset containing Office 365 Unified Audit Logs for security research and detection☆58Jun 7, 2022Updated 3 years ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆638Aug 4, 2025Updated 6 months ago
- Aggregation of lists of malicious IP addresses, to be blocked in the WAN > LAN direction, integrated into firewalls: FortiGate, Palo Alto…☆220Updated this week
- custom Python script to perform Yara matching in Cortex XDR☆14May 18, 2021Updated 4 years ago
- ipsets dynamically updated with firehol's update-ipsets.sh script☆3,760Feb 23, 2026Updated last week
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆758Aug 28, 2025Updated 6 months ago
- Specific C2 Detection Tool Written To Detect C2 Servers From RisePro Stealer Malware.☆13Nov 10, 2023Updated 2 years ago
- ☆23Mar 17, 2024Updated last year
- An open source list of ASNs known to belong to cloud, managed hosting, and colo facilities.☆487Feb 6, 2025Updated last year
- Daily feed of bad IPs (with blacklist hit scores)☆2,197Updated this week
- Malformed Access Log to CSV - Convert Web Server Access Logs to CSV☆18Sep 3, 2024Updated last year
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆93Sep 7, 2023Updated 2 years ago
- Compiled/Aggregated GEO-IP (CIDR) lists using RIPE/GEONAMES/IPDENY☆17Oct 26, 2025Updated 4 months ago
- Python script for parsing ESET (NOD32) virlog.dat file.☆14Sep 28, 2017Updated 8 years ago
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆69Dec 27, 2023Updated 2 years ago
- A sort of a toolkit to decrypt Dropbox Windows DBX files☆31Apr 30, 2017Updated 8 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Jul 11, 2023Updated 2 years ago
- ☆34Nov 11, 2025Updated 3 months ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆110Feb 6, 2026Updated 3 weeks ago
- Hunting for passwords with deep learning☆235May 10, 2024Updated last year
- ☆21May 8, 2022Updated 3 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆19Jul 15, 2021Updated 4 years ago
- Active C2 IoCs☆99Nov 28, 2022Updated 3 years ago
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆168Dec 7, 2025Updated 2 months ago
- Python script to walk a folder or a zip file for SQLite Databases☆37Sep 20, 2023Updated 2 years ago
- ☆115Feb 13, 2026Updated 2 weeks ago
- This repository contains instructions how to use the free IP Address API. The databases are: ASN database, Geolocation database, hosting …☆115Updated this week
- ☆33Oct 25, 2021Updated 4 years ago