Active C2 IoCs
☆100Nov 28, 2022Updated 3 years ago
Alternatives and similar repositories for active_c2_ioc_public
Users that are interested in active_c2_ioc_public are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆143Apr 20, 2023Updated 3 years ago
- Automatically created C2 Feeds☆726Updated this week
- ☆34Apr 29, 2026Updated 2 months ago
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.☆28Apr 10, 2024Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆149Sep 22, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆10Dec 24, 2022Updated 3 years ago
- JPCERT/CC public YARA rules repository☆111Mar 9, 2026Updated 4 months ago
- c2 traffic☆195Feb 6, 2023Updated 3 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Jun 11, 2020Updated 6 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆275May 5, 2021Updated 5 years ago
- ☆96Apr 8, 2026Updated 3 months ago
- ☆22Dec 22, 2020Updated 5 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆136Mar 28, 2022Updated 4 years ago
- ☆14Aug 21, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- This directory contains random scripts from threat hunting or malware research☆11Feb 15, 2018Updated 8 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆169Jan 5, 2021Updated 5 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆29Apr 22, 2023Updated 3 years ago
- ☆1,138Dec 19, 2023Updated 2 years ago
- A query aggregator for OSINT based threat hunting☆938Updated this week
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆67Jul 7, 2022Updated 4 years ago
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆22Aug 3, 2024Updated last year
- ☆450Aug 4, 2021Updated 4 years ago
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆68Apr 12, 2022Updated 4 years ago
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago
- Volatility plugin for extracts configuration data of known malware☆497Dec 22, 2023Updated 2 years ago
- Cobalt Strike Beacon configuration extractor and parser.☆163Oct 30, 2025Updated 8 months ago
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago
- MAL-CL (Malicious Command-Line)☆326Jan 10, 2023Updated 3 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Apr 25, 2022Updated 4 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆446Oct 26, 2022Updated 3 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆190Mar 17, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆210Jul 21, 2022Updated 3 years ago
- C2 Active Scanner☆58Jun 19, 2024Updated 2 years ago
- ☆93Jul 30, 2025Updated 11 months ago
- VirusTotal Intelligence Search☆42May 21, 2020Updated 6 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆14Jan 23, 2024Updated 2 years ago
- Defences against Cobalt Strike☆1,303Jul 14, 2022Updated 3 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆22Mar 5, 2024Updated 2 years ago