Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more
☆30Mar 31, 2026Updated last month
Alternatives and similar repositories for IOCs
Users that are interested in IOCs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- MAES: M365 Analyzer & Extractor Suite Po☆36May 4, 2026Updated 3 weeks ago
- Assess certain AWS network configurations☆12Aug 22, 2018Updated 7 years ago
- A public collection of detections designed to detect threats associated with the Okta WIC Platform.☆26May 19, 2026Updated last week
- A collection of methods to learn who the owner of an IP address is.☆234Sep 29, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- lnk_parser is a full rust implementation to parse windows LNK files☆23Feb 17, 2026Updated 3 months ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆65Dec 18, 2024Updated last year
- A recon tool for GCP Service Account Keys that requires no permissions☆27Apr 14, 2025Updated last year
- Yet another fseventsd parser for macOS forensics☆12Jul 20, 2024Updated last year
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆37Mar 15, 2023Updated 3 years ago
- Slides from various conferences and talks I've given☆14Oct 12, 2025Updated 7 months ago
- Repository with supporting materials for Invictus Academy/Training☆44Jan 3, 2025Updated last year
- Did you contain the compromised identity? notyet☆40May 4, 2026Updated 3 weeks ago
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Simulation of Akira Ransomware with Invoke-AtomicTest☆20Jul 10, 2024Updated last year
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆20May 9, 2025Updated last year
- ☆35May 13, 2026Updated 2 weeks ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆47Apr 4, 2026Updated last month
- ☆41Nov 29, 2024Updated last year
- Scripts to help with using gam for Google Workspace administration☆16Mar 7, 2024Updated 2 years ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Aug 30, 2024Updated last year
- Extract compressed memory pages from page-aligned data☆47Sep 25, 2018Updated 7 years ago
- A tool for fetching DFIR and other GitHub tools.☆29Aug 2, 2025Updated 9 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- AWS audits, without screenshots☆37May 12, 2026Updated 2 weeks ago
- Hands-on MCP security lab: 10 real incidents reproduced with vulnerable/secure MCP servers, pytest regressions, and Claude/Cursor battle-…☆88Dec 3, 2025Updated 5 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆86Apr 7, 2026Updated last month
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 7 months ago
- Cleo Unrestricted file upload and download PoC (CVE-2024-50623)☆25Dec 11, 2024Updated last year
- DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspect…☆243Apr 30, 2026Updated 3 weeks ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆110Apr 8, 2026Updated last month
- Putting a leash on naughty AWS permissions☆135Sep 5, 2025Updated 8 months ago
- Windows file metadata / forensic tool.☆20Oct 12, 2025Updated 7 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Jun 16, 2025Updated 11 months ago
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆266Nov 21, 2025Updated 6 months ago
- ☆110Dec 9, 2025Updated 5 months ago
- ☆16Aug 25, 2025Updated 9 months ago
- A library to parse macOS FsEvents☆25Aug 28, 2022Updated 3 years ago
- ☆30Jan 13, 2026Updated 4 months ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆27Mar 20, 2025Updated last year