Alternatives and similar repositories for malware-indicators:

Users that are interested in malware-indicators are comparing it to the libraries listed below

• citizenlab / malware-signatures
  Yara rules for malware families seen as part of targeted threats project
  ☆137Updated 8 years ago
• botherder / targetedthreats
  Collection of IOCs related to targeting of civil society
  ☆190Updated 3 years ago
• mandiant / ioc_writer
  ☆202Updated last year
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆167Updated 4 years ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆464Updated 6 years ago
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆383Updated 5 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆429Updated last year
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆137Updated 4 years ago
• PayloadSecurity / VxAPI
  A generic interface and CLI for all endpoints of the Falcon Sandbox API
  ☆214Updated last year
• crits / crits_services
  CRITs Services Collection
  ☆184Updated 3 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆261Updated 6 years ago
• egaus / MaliciousMacroBot
  ☆151Updated 6 years ago
• PUNCH-Cyber / YaraGuardian
  Django web interface for managing Yara rules
  ☆192Updated 6 years ago
• AlienVault-OTX / yabin
  A Yara rule generator for finding related samples and hunting
  ☆158Updated 2 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆119Updated 4 years ago
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆279Updated last year
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆396Updated 2 years ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆95Updated 8 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆292Updated 3 years ago
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆186Updated 2 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆245Updated 3 years ago
• Te-k / analyst-scripts
  Scripts to analyze stuff
  ☆146Updated 3 weeks ago
• GreyNoise-Intelligence / pygreynoise
  Python3 library and command line for GreyNoise
  ☆152Updated 2 weeks ago
• keithjjones / hostintel
  A modular Python application to collect intelligence for malicious hosts.
  ☆266Updated 4 years ago
• dod-cyber-crime-center / DC3-MWCP
  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …
  ☆313Updated 2 months ago
• shiva-spampot / shiva
  Spam Honeypot with Intelligent Virtual Analyzer
  ☆137Updated 3 weeks ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆150Updated 11 months ago
• MISP / MISP-maltego
  Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
  ☆176Updated 10 months ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆123Updated 5 years ago