blacklotuslabs / IOCsView external linksLinks
IOCs published by Black Lotus Labs
☆125Oct 30, 2025Updated 3 months ago
Alternatives and similar repositories for IOCs
Users that are interested in IOCs are comparing it to the libraries listed below
Sorting:
- Repository of Yara rules created by the Stratosphere team☆29Jul 8, 2021Updated 4 years ago
- Ursnif beacon decryptor☆27Mar 20, 2023Updated 2 years ago
- This repository contains a script created by Truesec CSIRT team which can be used to identify signs of compromise and to some extent, mit…☆11Jul 7, 2021Updated 4 years ago
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.☆29Apr 10, 2024Updated last year
- Indicators of Compromise for malware documented in whitepapers.☆41Updated this week
- ETW forensic tool for Volatility3 plugin☆17Nov 15, 2024Updated last year
- Labs built in docker to cover NSE lessons☆11Nov 24, 2023Updated 2 years ago
- Sophos-originated indicators-of-compromise from published reports☆650Jan 16, 2026Updated 3 weeks ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆79Jan 26, 2026Updated 2 weeks ago
- The Multiplatform Linux Sandbox☆16Dec 19, 2023Updated 2 years ago
- Carving tool based in Radare2 & Yara☆17Oct 30, 2018Updated 7 years ago
- Signatures and IoCs from public Volexity blog posts.☆362Dec 4, 2025Updated 2 months ago
- Indicators of compromise☆17Jan 29, 2026Updated 2 weeks ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆50May 16, 2022Updated 3 years ago
- Simple yara rule manager☆66Dec 27, 2022Updated 3 years ago
- Threat Intel IoCs + bits and pieces of dark matter☆434Dec 18, 2025Updated last month
- Scripts to aid analysis of files obfuscated with ScatterBee.☆24Jan 6, 2023Updated 3 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- Reads and prints information from the website MalAPI.io☆20Jul 14, 2022Updated 3 years ago
- Tool for fetching all the available waybackmachine snapshot urls☆24Oct 8, 2024Updated last year
- Linux Incident Response☆90Sep 22, 2019Updated 6 years ago
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆694Oct 22, 2025Updated 3 months ago
- ReversingLabs YARA Rules☆895Nov 3, 2025Updated 3 months ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Jan 31, 2024Updated 2 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Sep 26, 2017Updated 8 years ago
- A malware sandoxed with gdb☆15Jun 27, 2016Updated 9 years ago
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Jun 18, 2021Updated 4 years ago
- ☆54Feb 2, 2026Updated last week
- Just some lists of Malware Configs☆173Jan 9, 2025Updated last year
- ☆22Jul 7, 2023Updated 2 years ago
- Awesome Security lists for SOC/CERT/CTI☆1,239Updated this week
- ☆61Dec 9, 2025Updated 2 months ago
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Apr 7, 2024Updated last year
- Known WannCrypt Bitcoin addresses☆10Jul 17, 2017Updated 8 years ago
- Exposes batch message receives (recvmmsg)☆14Aug 15, 2025Updated 6 months ago
- Metasploit Post-Exploitation Gather module for Exchange Server☆25Mar 26, 2021Updated 4 years ago
- C & Shellcode Playground..☆10Dec 2, 2017Updated 8 years ago
- This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.☆12Mar 27, 2019Updated 6 years ago
- IDA Pro Instruction Reference Plugin☆14Oct 2, 2019Updated 6 years ago