drb-ra/C2IntelFeeds external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

drb-ra/C2IntelFeeds

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/drb-ra/C2IntelFeeds)

Close

drb-ra / C2IntelFeedsView on GitHubMore

• External links
• Readme badge

Automatically created C2 Feeds

☆667Mar 19, 2026Updated this week

Alternatives and similar repositories for C2IntelFeeds

Users that are interested in C2IntelFeeds are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• montysecurity / C2-Tracker

  View on GitHub
  Live Feed of C2 servers, tools, and botnets
  ☆756Mar 16, 2026Updated last week
• 0xDanielLopez / TweetFeed

  View on GitHub
  TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains…
  ☆645Updated this week
• carbonblack / active_c2_ioc_public

  View on GitHub
  Active C2 IoCs
  ☆99Nov 28, 2022Updated 3 years ago
• cedowens / C2-JARM

  View on GitHub
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆144Apr 20, 2023Updated 2 years ago
• fox-it / cobaltstrike-beacon-data

  View on GitHub
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆133Mar 28, 2022Updated 3 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• Bert-JanP / Open-Source-Threat-Intel-Feeds

  View on GitHub
  This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…
  ☆787Mar 18, 2026Updated last week
• Sentinel-One / CobaltStrikeParser

  View on GitHub
  ☆1,134Dec 19, 2023Updated 2 years ago
• executemalware / Malware-IOCs

  View on GitHub
  ☆512Oct 7, 2024Updated last year
• whickey-r7 / grab_beacon_config

  View on GitHub
  ☆451Aug 4, 2021Updated 4 years ago
• Te-k / cobaltstrike

  View on GitHub
  Code and yara rules to detect and analyze Cobalt Strike
  ☆272May 5, 2021Updated 4 years ago
• Abjuri5t / SarlackLab

  View on GitHub
  ☆34Nov 11, 2025Updated 4 months ago
• sophoslabs / IoCs

  View on GitHub
  Sophos-originated indicators-of-compromise from published reports
  ☆652Jan 16, 2026Updated 2 months ago
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,661Mar 9, 2026Updated 2 weeks ago
• RansomLook / RansomLook

  View on GitHub
  Yet another Ransomware gang tracker
  ☆565Mar 12, 2026Updated last week
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• mthcht / ThreatHunting-Keywords

  View on GitHub
  Awesome list of keywords and artifacts for Threat Hunting sessions
  ☆648Aug 4, 2025Updated 7 months ago
• chronicle / GCTI

  View on GitHub
  ☆553Dec 4, 2023Updated 2 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence

  View on GitHub
  Defences against Cobalt Strike
  ☆1,298Jul 14, 2022Updated 3 years ago
• fox-it / dissect.cobaltstrike

  View on GitHub
  Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles
  ☆187Mar 17, 2026Updated last week
• joshhighet / ransomwatch

  View on GitHub
  the transparent ransomware claim tracker 🥷🏼🧅🖥️
  ☆1,094Mar 3, 2026Updated 3 weeks ago
• ahmedkhlief / APT-Hunter

  View on GitHub
  APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …
  ☆1,405Nov 7, 2024Updated last year
• InQuest / ThreatIngestor

  View on GitHub
  Extract and aggregate threat intelligence.
  ☆907Jan 31, 2024Updated 2 years ago
• volexity / threat-intel

  View on GitHub
  Signatures and IoCs from public Volexity blog posts.
  ☆366Dec 4, 2025Updated 3 months ago
• InQuest / iocextract

  View on GitHub
  Defanged Indicator of Compromise (IOC) Extractor.
  ☆571Aug 28, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• blackorbird / APT_REPORT

  View on GitHub
  Interesting APT Report Collection And Some Special IOCs
  ☆2,955Mar 17, 2026Updated last week
• pan-unit42 / iocs

  View on GitHub
  Indicators from Unit 42 Public Reports
  ☆726Aug 17, 2025Updated 7 months ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds

  View on GitHub
  Zeek-Formatted Threat Intelligence Feeds
  ☆390Mar 18, 2026Updated last week
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆791Mar 14, 2026Updated last week
• gendigitalinc / ioc

  View on GitHub
  Threat Intel IoCs + bits and pieces of dark matter. Published by Gen Threat Labs.
  ☆438Updated this week
• alexandreborges / malwoverview

  View on GitHub
  Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…
  ☆3,653Mar 11, 2026Updated 2 weeks ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,526Jan 24, 2023Updated 3 years ago
• StrangerealIntel / DailyIOC

  View on GitHub
  IOC from articles, tweets for archives
  ☆318Dec 12, 2023Updated 2 years ago
• kevoreilly / CAPEv2

  View on GitHub
  Malware Configuration And Payload Extraction
  ☆3,082Mar 18, 2026Updated last week
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• misthi0s / Malware_IOCs

  View on GitHub
  IOCs for various malware families
  ☆11Jul 18, 2024Updated last year
• advanced-threat-research / Yara-Rules

  View on GitHub
  Repository of YARA rules made by Trellix ATR Team
  ☆627Mar 18, 2025Updated last year
• c2links / NoWhere2Hide

  View on GitHub
  C2 Active Scanner
  ☆59Jun 19, 2024Updated last year
• BushidoUK / Ransomware-Tool-Matrix

  View on GitHub
  A resource containing all the tools each ransomware gangs uses
  ☆1,329Mar 17, 2026Updated last week
• mthcht / Purpleteam

  View on GitHub
  Purpleteam scripts simulation & Detection - trigger events for SOC detections
  ☆196Dec 20, 2024Updated last year
• ail-project / ail-framework

  View on GitHub
  AIL framework - Analysis Information Leak framework
  ☆893Updated this week
• NextronSystems / APTSimulator

  View on GitHub
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,722Sep 23, 2025Updated 6 months ago