blacklotuslabs / IOCs
IOCs published by Black Lotus Labs
☆118Updated 2 months ago
Alternatives and similar repositories for IOCs:
Users that are interested in IOCs are comparing it to the libraries listed below
- A GUI to query the API of abuse.ch.☆70Updated 2 years ago
- ☆67Updated last month
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆76Updated 4 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆71Updated 4 months ago
- Fast IOC and YARA Scanner☆79Updated 5 years ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆114Updated last year
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆101Updated 5 months ago
- LOKI2 - Simple IOC and YARA Scanner☆88Updated 8 months ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆85Updated 2 years ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated last year
- Lightweight Python-Based Malware Analysis Pipeline☆34Updated last week
- ☆126Updated 3 weeks ago
- Sigma rules to share with the community☆119Updated 2 months ago
- ☆124Updated last month
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 2 years ago
- A python script developed to process Windows memory images based on triage type.☆261Updated last year
- A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.☆137Updated 8 months ago
- Open IOC sharing platform☆56Updated 4 months ago
- WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.☆158Updated last month
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆68Updated last year
- Linux Evidence Acquisition Framework☆114Updated 6 months ago
- Jupyter Notebooks for the Blue Team☆145Updated last week
- Automated YARA Rule Standardization and Quality Assurance Tool☆200Updated last week
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆151Updated last year
- Elastic Security Labs releases☆61Updated this week
- Forensic Artifact Collection Tool Matrix☆83Updated 4 months ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆165Updated 2 years ago