Automatically created C2 Feeds
☆666Feb 28, 2026Updated this week
Alternatives and similar repositories for C2IntelFeeds
Users that are interested in C2IntelFeeds are comparing it to the libraries listed below
Sorting:
- TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains…☆637Updated this week
- Live Feed of C2 servers, tools, and botnets☆749Feb 23, 2026Updated last week
- Active C2 IoCs☆99Nov 28, 2022Updated 3 years ago
- ☆1,131Dec 19, 2023Updated 2 years ago
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆144Apr 20, 2023Updated 2 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆133Mar 28, 2022Updated 3 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆272May 5, 2021Updated 4 years ago
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆773Jan 28, 2025Updated last year
- Defences against Cobalt Strike☆1,296Jul 14, 2022Updated 3 years ago
- ☆35Nov 11, 2025Updated 3 months ago
- ☆512Oct 7, 2024Updated last year
- ☆451Aug 4, 2021Updated 4 years ago
- KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…☆1,638Feb 22, 2026Updated last week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆641Aug 4, 2025Updated 7 months ago
- Sophos-originated indicators-of-compromise from published reports☆653Jan 16, 2026Updated last month
- Interesting APT Report Collection And Some Special IOCs☆2,915Feb 24, 2026Updated last week
- Signatures and IoCs from public Volexity blog posts.☆364Dec 4, 2025Updated 3 months ago
- Yet another Ransomware gang tracker☆562Feb 24, 2026Updated last week
- Extract and aggregate threat intelligence.☆906Jan 31, 2024Updated 2 years ago
- Defanged Indicator of Compromise (IOC) Extractor.☆569Aug 28, 2024Updated last year
- APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …☆1,402Nov 7, 2024Updated last year
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆186Jun 23, 2025Updated 8 months ago
- ☆553Dec 4, 2023Updated 2 years ago
- IOC from articles, tweets for archives☆318Dec 12, 2023Updated 2 years ago
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,547Jan 20, 2026Updated last month
- Windows Events Attack Samples☆2,515Jan 24, 2023Updated 3 years ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆785Feb 22, 2026Updated last week
- Threat Intel IoCs + bits and pieces of dark matter☆434Feb 19, 2026Updated last week
- Zeek-Formatted Threat Intelligence Feeds☆385Feb 25, 2026Updated last week
- Indicators from Unit 42 Public Reports☆728Aug 17, 2025Updated 6 months ago
- Repository of YARA rules made by Trellix ATR Team☆625Mar 18, 2025Updated 11 months ago
- Malware Configuration And Payload Extraction☆3,031Updated this week
- the transparent ransomware claim tracker 🥷🏼🧅🖥️☆1,091Jun 17, 2025Updated 8 months ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆922Aug 19, 2021Updated 4 years ago
- Hunts out CobaltStrike beacons and logs operator command output☆950Sep 4, 2024Updated last year
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,930Jan 20, 2026Updated last month
- Detect and respond to Cobalt Strike beacons using ETW.☆516Jul 15, 2022Updated 3 years ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,715Sep 23, 2025Updated 5 months ago
- Elastic Security detection content for Endpoint☆1,380Feb 26, 2026Updated last week