abusech / ThreatFoxLinks
Open IOC sharing platform
☆60Updated 9 months ago
Alternatives and similar repositories for ThreatFox
Users that are interested in ThreatFox are comparing it to the libraries listed below
Sorting:
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- yara detection rules for hunting with the threathunting-keywords project☆127Updated 3 months ago
- Linux Evidence Acquisition Framework☆119Updated 10 months ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- ☆66Updated 2 years ago
- ☆96Updated 3 months ago
- IOC Collection 2022☆57Updated 2 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆73Updated last month
- A small util to brute-force prefetch hashes☆78Updated 3 years ago
- BlueBox Malware analysis Box and Cyber threat intelligence.☆43Updated 3 years ago
- Slides of my public talks☆56Updated last year
- ☆69Updated 6 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆53Updated 8 months ago
- Library of threat hunts to get any user started!☆45Updated 4 years ago
- ☆33Updated last year
- A GUI to query the API of abuse.ch.☆70Updated 3 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆124Updated last year
- Sigma rules to share with the community☆121Updated 6 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆78Updated 2 months ago
- Initial triage of Windows Event logs☆102Updated last year
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- A visualized overview of the Initial Access Broker (IAB) cybercrime landscape☆114Updated 3 years ago
- ☆34Updated this week
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆61Updated last year
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- Contains compiled binaries of Volatility☆34Updated 3 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆69Updated 2 months ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆169Updated 2 years ago
- CarbonBlack EDR detection rules and response actions☆71Updated 11 months ago