blacklotuslabs / IOCs
IOCs published by Black Lotus Labs
☆91Updated this week
Related projects: ⓘ
- Rules Shared by the Community from 100 Days of YARA 2023☆76Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- ☆130Updated 7 months ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆108Updated 9 months ago
- Elastic Security Labs releases☆46Updated 3 weeks ago
- The Windows Malware Analysis Reversing Core Tools☆88Updated 3 years ago
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year
- ☆61Updated 3 weeks ago
- Hatching Triage public command-line utility and API library.☆62Updated 11 months ago
- Open IOC sharing platform☆52Updated 11 months ago
- A GUI to query the API of abuse.ch.☆69Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆143Updated 11 months ago
- A guide on how to write fast and memory friendly YARA rules☆123Updated last year
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆76Updated 2 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆65Updated last week
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆162Updated last year
- ☆95Updated 6 months ago
- ☆75Updated 3 weeks ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆93Updated 2 weeks ago
- HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…☆79Updated 2 months ago
- JPCERT/CC public YARA rules repository☆98Updated 3 months ago
- Initial triage of Windows Event logs☆83Updated 3 months ago
- A PowerShell incident response script for quick triage☆75Updated 2 years ago
- Active C2 IoCs☆96Updated last year
- ☆84Updated 7 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆136Updated 10 months ago
- A toolkit for the post-mortem examination of Docker containers from forensic HDD copies☆89Updated 7 months ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆104Updated 2 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆108Updated 9 months ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆131Updated 2 years ago