This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
☆49Jun 11, 2026Updated 3 weeks ago
Alternatives and similar repositories for threat-intel
Users that are interested in threat-intel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Jun 2, 2026Updated last month
- ☆16Mar 22, 2023Updated 3 years ago
- ☆11Jun 12, 2023Updated 3 years ago
- Bulk indicator VirusTotal lookups supporting file hashes, domains and IPs.☆13May 28, 2025Updated last year
- ☆44Jul 11, 2025Updated 11 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A proof-of-concept re-assembler for reverse VNC traffic.☆24May 21, 2023Updated 3 years ago
- Everything related to YARA☆16Apr 18, 2026Updated 2 months ago
- Public Chronicle Detection Rules☆12Apr 25, 2023Updated 3 years ago
- Yara Rules for Modern Malware☆80Mar 3, 2024Updated 2 years ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- Indicators of compromise☆20May 18, 2026Updated last month
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Mar 21, 2026Updated 3 months ago
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated 2 years ago
- An AD CS toolkit for AD Admins, Defensive Security Professionals, and Filthy Red Teamers☆67Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- SQL, IIS, Oh My...☆22Feb 24, 2025Updated last year
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 7 months ago
- ☆22Dec 22, 2020Updated 5 years ago
- ☆96Apr 8, 2026Updated 3 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆92Mar 11, 2026Updated 3 months ago
- ☆14Mar 9, 2023Updated 3 years ago
- ☆15Nov 25, 2021Updated 4 years ago
- ☆61May 28, 2026Updated last month
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆56Jun 26, 2026Updated last week
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆85Sep 29, 2025Updated 9 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆52May 16, 2022Updated 4 years ago
- MSIX Building Made Easy for Defenders☆63Aug 25, 2025Updated 10 months ago
- ☆21May 8, 2022Updated 4 years ago
- Examine Chrome extensions for security issues☆98Nov 16, 2025Updated 7 months ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆96Nov 3, 2025Updated 8 months ago
- bad stuffs by bad guys☆49Jul 28, 2022Updated 3 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆286Jun 23, 2026Updated 2 weeks ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Elastic Security detection content for Endpoint☆1,451Jun 30, 2026Updated last week
- Creating an ATT&CK Navigator layer with the detection coverage of the signals available within Tanium Threat Response.☆11Jun 2, 2021Updated 5 years ago
- ☆52Sep 1, 2025Updated 10 months ago
- Malware that we analyzed on our site.☆26Nov 12, 2025Updated 7 months ago
- Collection of my own detection rules☆20Jan 6, 2026Updated 6 months ago
- ☆21Jan 20, 2023Updated 3 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆54Oct 23, 2024Updated last year