This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
☆47Feb 27, 2026Updated last week
Alternatives and similar repositories for threat-intel
Users that are interested in threat-intel are comparing it to the libraries listed below
Sorting:
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 5 months ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆24May 21, 2023Updated 2 years ago
- ☆44Jul 11, 2025Updated 7 months ago
- Bulk indicator VirusTotal lookups supporting file hashes, domains and IPs.☆12May 28, 2025Updated 9 months ago
- SQL, IIS, Oh My...☆22Feb 24, 2025Updated last year
- Everything related to YARA☆16Feb 19, 2026Updated 2 weeks ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- ☆96May 5, 2025Updated 10 months ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Jul 10, 2025Updated 7 months ago
- An AD CS toolkit for AD Admins, Defensive Security Professionals, and Filthy Red Teamers☆35Feb 21, 2026Updated 2 weeks ago
- ☆14Mar 9, 2023Updated 3 years ago
- A collection of various SIEM rules relating to malware family groups.☆70Jun 18, 2024Updated last year
- Indicators of compromise☆17Jan 29, 2026Updated last month
- ☆15Nov 25, 2021Updated 4 years ago
- A repository of my own Sigma detection rules.☆163Nov 25, 2025Updated 3 months ago
- ☆54Updated this week
- ☆21May 8, 2022Updated 3 years ago
- Yara Rules for Modern Malware☆78Mar 3, 2024Updated 2 years ago
- Collection of my own detection rules☆20Jan 6, 2026Updated 2 months ago
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆54Updated this week
- ShellSweeping the evil.☆53Jun 18, 2024Updated last year
- Examine Chrome extensions for security issues☆96Nov 16, 2025Updated 3 months ago
- ☆78Sep 29, 2025Updated 5 months ago
- bad stuffs by bad guys☆49Jul 28, 2022Updated 3 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆92Nov 3, 2025Updated 4 months ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- CLI tool to compute the TypeRefHash for .NET binaries.☆19Nov 10, 2021Updated 4 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆55Jul 20, 2023Updated 2 years ago
- I read 20 years of mostly-fail at cyber norms at the UN, and now you can too!☆20Mar 21, 2018Updated 7 years ago
- My first trial at Ethical Hacking Write Ups☆23Jul 23, 2020Updated 5 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆278Dec 20, 2025Updated 2 months ago
- ☆20Jan 20, 2023Updated 3 years ago
- ☆106Dec 9, 2025Updated 3 months ago
- This content is analysis and research of the data sources currently listed in ATT&CK.☆413Sep 13, 2023Updated 2 years ago
- pocket guide for core threat hunting concepts☆23May 6, 2020Updated 5 years ago
- Malware that we analyzed on our site.☆26Nov 12, 2025Updated 3 months ago
- ☆52Sep 1, 2025Updated 6 months ago