eSentire / iocsLinks
☆39Updated this week
Alternatives and similar repositories for iocs
Users that are interested in iocs are comparing it to the libraries listed below
Sorting:
- CarbonBlack EDR detection rules and response actions☆71Updated 10 months ago
- Active C&C Detector☆155Updated last year
- Sigma rules to share with the community☆121Updated 6 months ago
- yara detection rules for hunting with the threathunting-keywords project☆126Updated 2 months ago
- A collection of CVEs weaponized by ransomware operators☆119Updated last month
- A specification and style guide for YARA rules☆52Updated last year
- Contains compiled binaries of Volatility☆34Updated 2 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆124Updated last year
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆125Updated this week
- An introduction to detection engineering☆13Updated 7 months ago
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆101Updated 3 months ago
- ☆34Updated this week
- Initial triage of Windows Event logs☆102Updated last year
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Updated 10 months ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆98Updated 9 months ago
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- IOC Collection 2022☆57Updated 2 years ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆68Updated last month
- MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity☆92Updated 4 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆96Updated 2 years ago
- Indicators of compromise☆14Updated last month
- Parses USB connection artifacts from offline Registry hives☆100Updated last month
- Slides of my public talks☆56Updated last year
- Full of public notes and Utilities☆127Updated 5 months ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆44Updated this week
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆154Updated 4 months ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆105Updated 11 months ago
- Configuration Extractors for Malware☆110Updated 3 months ago
- IOCs collected during day-to-day activities☆70Updated this week
- A repository to share publicly available Velociraptor detection content☆186Updated this week