blacklotuslabs / IOCs

Related projects: ⓘ

• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated last year
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• pan-unit42 / tweets
  ☆130Updated 7 months ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆108Updated 9 months ago
• elastic / labs-releases
  Elastic Security Labs releases
  ☆46Updated 3 weeks ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆88Updated 3 years ago
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆142Updated last year
• The-DFIR-Report / Yara-Rules
  ☆61Updated 3 weeks ago
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆62Updated 11 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆52Updated 11 months ago
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆69Updated 2 years ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆143Updated 11 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆123Updated last year
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆76Updated 2 years ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆65Updated last week
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆162Updated last year
• CronUp / Malware-IOCs
  ☆95Updated 6 months ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆75Updated 3 weeks ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆93Updated 2 weeks ago
• fireeye / HXTool
  HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…
  ☆79Updated 2 months ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆98Updated 3 months ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆83Updated 3 months ago
• nov3mb3r / trident
  A PowerShell incident response script for quick triage
  ☆75Updated 2 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆96Updated last year
• CrowdStrike / xwf-yara-scanner
  ☆84Updated 7 months ago
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆136Updated 10 months ago
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆89Updated 7 months ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• swisscom / Invoke-Forensics
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆108Updated 9 months ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 2 years ago