This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
☆47Feb 27, 2026Updated last month
Alternatives and similar repositories for threat-intel
Users that are interested in threat-intel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 6 months ago
- ☆16Mar 22, 2023Updated 3 years ago
- ☆11Jun 12, 2023Updated 2 years ago
- Bulk indicator VirusTotal lookups supporting file hashes, domains and IPs.☆13May 28, 2025Updated 10 months ago
- ☆44Jul 11, 2025Updated 8 months ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- A proof-of-concept re-assembler for reverse VNC traffic.☆24May 21, 2023Updated 2 years ago
- Everything related to YARA☆16Feb 19, 2026Updated last month
- Yara Rules for Modern Malware☆79Mar 3, 2024Updated 2 years ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- Indicators of compromise☆17Jan 29, 2026Updated 2 months ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Mar 21, 2026Updated last week
- A Productivity-Boosting Burp Suite extension written in Kotlin that enables persistent sticky session handling in web application testing…☆12Oct 8, 2025Updated 5 months ago
- A collection of various SIEM rules relating to malware family groups.☆69Jun 18, 2024Updated last year
- An AD CS toolkit for AD Admins, Defensive Security Professionals, and Filthy Red Teamers☆42Updated this week
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- A repository of my own Sigma detection rules.☆164Nov 25, 2025Updated 4 months ago
- ☆22Dec 22, 2020Updated 5 years ago
- API to load and query documents using RAG☆14Sep 25, 2023Updated 2 years ago
- ☆96May 5, 2025Updated 10 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆88Mar 11, 2026Updated 2 weeks ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- ☆15Nov 25, 2021Updated 4 years ago
- ☆14Mar 9, 2023Updated 3 years ago
- An powered LLM Slack bot that uses an OpenAI API backend (LlamaCPP, Ollama, etc)☆13Mar 21, 2026Updated last week
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆56Mar 5, 2026Updated 3 weeks ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆55Updated this week
- ☆32Mar 11, 2026Updated 2 weeks ago
- ☆78Sep 29, 2025Updated 6 months ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆50May 16, 2022Updated 3 years ago
- MSIX Building Made Easy for Defenders☆64Aug 25, 2025Updated 7 months ago
- ☆21May 8, 2022Updated 3 years ago
- Examine Chrome extensions for security issues☆97Nov 16, 2025Updated 4 months ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆92Nov 3, 2025Updated 4 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- bad stuffs by bad guys☆49Jul 28, 2022Updated 3 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆280Dec 20, 2025Updated 3 months ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- ☆77Feb 19, 2026Updated last month
- BHUSA'24: Cuda-pretrained Inference Decompile Agent (CuIDA)☆15Aug 8, 2024Updated last year
- Creating an ATT&CK Navigator layer with the detection coverage of the signals available within Tanium Threat Response.☆11Jun 2, 2021Updated 4 years ago
- A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat in…☆482Updated this week