eSentire / iocsLinks
☆49Updated this week
Alternatives and similar repositories for iocs
Users that are interested in iocs are comparing it to the libraries listed below
Sorting:
- CarbonBlack EDR detection rules and response actions☆73Updated last year
- Active C&C Detector☆156Updated 2 years ago
- Sigma rules to share with the community☆122Updated 8 months ago
- Contains compiled binaries of Volatility☆37Updated 5 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆137Updated this week
- yara detection rules for hunting with the threathunting-keywords project☆150Updated 5 months ago
- Collection of scripts to automate the Malware Analysis process☆28Updated this week
- Configuration Extractors for Malware☆117Updated 6 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- A C# based tool for analysing malicious OneNote documents☆116Updated 2 years ago
- ShellSweeping the evil.☆180Updated 11 months ago
- A collection of CVEs weaponized by ransomware operators☆125Updated 2 weeks ago
- An introduction to detection engineering☆13Updated 9 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- A Windows Event Log MCP☆38Updated 2 months ago
- Baseline a Windows System against LOLBAS☆68Updated last year
- A specification and style guide for YARA rules☆59Updated last year
- Yara Rules for Modern Malware☆79Updated last year
- Default Detections for EDR☆96Updated last year
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…☆61Updated last year
- IOCs and notes related to malware☆25Updated 3 months ago
- A collection of tools, scripts and personal research☆145Updated 2 months ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆83Updated last year
- Indicators of compromise☆15Updated last week
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆132Updated last week
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆147Updated 3 months ago
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆36Updated last week
- ☆37Updated last year
- custom Python script to perform Yara matching in Cortex XDR☆14Updated 4 years ago
- Repository of Yara Rules☆123Updated last month