davidonzo / Threat-Intel

Related projects: ⓘ

• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆72Updated 4 years ago
• blacklotuslabs / IOCs
  IOCs published by Black Lotus Labs
  ☆91Updated this week
• stamparm / blackbook
  Blackbook of malware domains
  ☆217Updated 2 weeks ago
• brianwarehime / threatnote
  ☆139Updated this week
• TheHive-Project / awesome
  A curated list of awesome things related to TheHive & Cortex
  ☆170Updated 2 years ago
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆65Updated last week
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆340Updated this week
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆83Updated 2 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆152Updated 3 weeks ago
• 13Cubed / Abeebus
  A GeoIP lookup utility utilizing ipinfo.io services.
  ☆83Updated 9 months ago
• infobloxopen / threat-intelligence
  ☆62Updated this week
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆62Updated last year
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆98Updated this week
• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆157Updated 10 months ago
• traceflow / virustotal3
  Python 3 implementation of the VirusTotal v3 API
  ☆77Updated last year
• pan-unit42 / tweets
  ☆130Updated 7 months ago
• TheHive-Project / Docker-Templates
  Docker configurations for TheHive, Cortex and 3rd party tools
  ☆110Updated last year
• 3CORESec / SIEGMA
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆139Updated last year
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆235Updated 3 years ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆47Updated 2 months ago
• sublime-security / sublime-rules
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆235Updated this week
• StrangerealIntel / EternalLiberty
  ☆185Updated last year
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆62Updated 11 months ago
• The-DFIR-Report / Yara-Rules
  ☆61Updated 3 weeks ago
• hpthreatresearch / iocs
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆29Updated 5 months ago
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆166Updated last year
• parthdmaniar / coronavirus-covid-19-SARS-CoV-2-IoCs
  All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns
  ☆65Updated 3 years ago
• coolacid / docker-misp
  A (nearly) production ready Dockered MISP
  ☆226Updated 8 months ago
• vadim-hunter / Detection-Ideas-Rules
  Detection Ideas & Rules repository.
  ☆178Updated 3 years ago