google/threat-team external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

google/threat-team

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/google/threat-team)

Close

google / threat-teamView on GitHubMore

• External links
• Readme badge

IOCs from Google Threat Intelligence Group

☆62Oct 9, 2025Updated 5 months ago

Alternatives and similar repositories for threat-team

Users that are interested in threat-team are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• HarfangLab / iocs

  View on GitHub
  Indicators of compromise
  ☆17Jan 29, 2026Updated 2 months ago
• Velocidex / cloudvelo

  View on GitHub
  An experimental Velociraptor implementation using cloud infrastructure
  ☆26Dec 2, 2025Updated 3 months ago
• iomoath / FileWatchTower

  View on GitHub
  FWT is a security analysis and file monitoring tool that utilizes Sysmon events.
  ☆28Jul 15, 2024Updated last year
• conexioninversa / WOPR

  View on GitHub
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Apr 22, 2024Updated last year
• matt-culbert / CloakNDaggerC2

  View on GitHub
  ☆18Oct 28, 2025Updated 5 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• sensepost / dresscode

  View on GitHub
  Scan websites CSP policies and visualise their vunlnerabilities from a dashboard
  ☆13Mar 11, 2025Updated last year
• aws-samples / landing-zone-accelerator-on-aws-for-cccs-medium

  View on GitHub
  ☆26Oct 30, 2025Updated 4 months ago
• ThreatLabz / iocs

  View on GitHub
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆78Jan 26, 2026Updated 2 months ago
• taiki-e / rust-cross-toolchain

  View on GitHub
  Toolchains for cross compilation and cross testing for Rust.
  ☆23Jan 30, 2026Updated 2 months ago
• BishopFox / sliver-wasm-stager

  View on GitHub
  A stager and implant that executes remote Web Assembly
  ☆63Feb 4, 2026Updated last month
• fabric8-analytics / cvedb

  View on GitHub
  CVE database
  ☆21Sep 2, 2020Updated 5 years ago
• abdalrahman0x80 / smtpEmailChecker

  View on GitHub
  powerfull pentesting tool to checking email by smtp command
  ☆10Feb 29, 2024Updated 2 years ago
• Tylous / GraphRunner

  View on GitHub
  A Post-exploitation Toolset for Interacting with the Microsoft Graph API
  ☆15Nov 16, 2023Updated 2 years ago
• NomanProdhan / malbuzz

  View on GitHub
  It's a handy tool to help you analyze malware. You can use this tool to query your malware samples using different hashes or find all oth…
  ☆20Jul 22, 2025Updated 8 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• ssc-spc-ccoe-cei / azure-guardrails-solution-accelerator

  View on GitHub
  This implementation automates reporting to verify compliance with GC Cloud Guardrails. SSC and TBS review the results. Cette mise en œuvr…
  ☆14Updated this week
• advanced-threat-research / Threat-Reports

  View on GitHub
  Repository to store the Threat Reports made by the McAfee Enterprise ATR Team
  ☆10Oct 11, 2018Updated 7 years ago
• theevilbit / vaccination

  View on GitHub
  ☆10Oct 22, 2017Updated 8 years ago
• open-source-dfir / slack

  View on GitHub
  Information about the open-source-dfir slack community
  ☆30Jun 17, 2023Updated 2 years ago
• elceef / yara-rulz

  View on GitHub
  Collection of generic YARA rules
  ☆16Mar 18, 2026Updated last week
• dfir-ronin / APT-OpenIOC-Detection-Rules

  View on GitHub
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆26Oct 3, 2023Updated 2 years ago
• LiveTvWorldwide / IPTV

  View on GitHub
  ☆20Updated this week
• opabravo / mass-bruter

  View on GitHub
  Mass bruteforce authentication of common services with common credentials.
  ☆54Dec 2, 2023Updated 2 years ago
• blasty / canon

  View on GitHub
  ☆44Mar 16, 2024Updated 2 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• blacklotuslabs / IOCs

  View on GitHub
  IOCs published by Black Lotus Labs
  ☆138Updated this week
• SAP-archive / forensic-artifact-automation

  View on GitHub
  A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing o…
  ☆12Apr 26, 2023Updated 2 years ago
• JSCU-NL / COATHANGER

  View on GitHub
  IOCs and detection script for COATHANGER malware
  ☆55Feb 7, 2024Updated 2 years ago
• ali-kaptanoglu / bug-bounty

  View on GitHub
  bug bounty
  ☆11Aug 13, 2023Updated 2 years ago
• EspressoCake / BOF_NativeAPI_Definitions-VSCode

  View on GitHub
  A VSCode plugin to assist with BOF development.
  ☆37Aug 14, 2024Updated last year
• nothingspecialforu / EvtPsst

  View on GitHub
  EvtPsst
  ☆55Oct 24, 2023Updated 2 years ago
• dfir-scripts / EverReady-Disk-Mount

  View on GitHub
  Disk Image Mounting Script
  ☆11Jan 22, 2026Updated 2 months ago
• hpthreatresearch / tools

  View on GitHub
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Apr 10, 2024Updated last year
• 100DaysofYARA / 2025

  View on GitHub
  Rules shared by the community from 100 Days of YARA 2025
  ☆38Jan 2, 2026Updated 2 months ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• canada-ca / accelerators_accelerateurs-gcp

  View on GitHub
  [GCP] Tools and templates to accelerate GC service delivery. Outils et modèles pour accélérer la prestation de services du GC.
  ☆10Mar 31, 2023Updated 2 years ago
• malicialab / iocsearcher

  View on GitHub
  A library and command line tool for extracting indicators of compromise (IOCs) from security reports in PDF, HTML, Word, or text format
  ☆51Mar 20, 2026Updated last week
• blacklanternsecurity / bbot-module-playground

  View on GitHub
  A proving grounds for young and aspiring BBOT modules
  ☆15Aug 31, 2022Updated 3 years ago
• rapid7 / Rapid7-Labs

  View on GitHub
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆89Updated this week
• FalconForceTeam / TelemetryCollectionManager

  View on GitHub
  Manage and maintain Defender XDR custom collection configuration
  ☆34Nov 19, 2025Updated 4 months ago
• sandmaxprime / VagrantMalwareWin10VM

  View on GitHub
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Jun 1, 2021Updated 4 years ago
• NextronSystems / velociraptor-artifacts-thor

  View on GitHub
  Thor Artifacts for Velociraptor
  ☆19Dec 2, 2025Updated 3 months ago