mandiant/iocs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mandiant/iocs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mandiant/iocs)

Close

mandiant / iocsView on GitHubMore

• External links
• Readme badge

FireEye Publicly Shared Indicators of Compromise (IOCs)

☆472Jan 19, 2019Updated 7 years ago

Alternatives and similar repositories for iocs

Users that are interested in iocs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• armbues / ioc_parser

  View on GitHub
  Tool to extract indicators of compromise from security reports in PDF format
  ☆439Feb 24, 2023Updated 3 years ago
• mandiant / ioc_writer

  View on GitHub
  ☆208May 3, 2023Updated 3 years ago
• stephenbrannon / IOCextractor

  View on GitHub
  IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
  ☆135Jan 14, 2016Updated 10 years ago
• eset / malware-ioc

  View on GitHub
  Indicators of Compromises (IOC) of our various investigations
  ☆1,946Apr 23, 2026Updated last week
• pan-unit42 / iocs

  View on GitHub
  Indicators from Unit 42 Public Reports
  ☆728Aug 17, 2025Updated 8 months ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• sroberts / awesome-iocs

  View on GitHub
  A collection of sources of indicators of compromise.
  ☆971May 8, 2025Updated 11 months ago
• crits / crits

  View on GitHub
  CRITs - Collaborative Research Into Threats
  ☆911Jul 29, 2019Updated 6 years ago
• fox-it / ponmocup

  View on GitHub
  Ponmocup Indicators of Compromise
  ☆10Feb 4, 2016Updated 10 years ago
• Neo23x0 / Loki

  View on GitHub
  Loki - Simple IOC and YARA Scanner
  ☆3,748Jan 12, 2026Updated 3 months ago
• krmaxwell / maltrieve

  View on GitHub
  A tool to retrieve malware directly from the source for security researchers.
  ☆564Jul 27, 2017Updated 8 years ago
• mlsecproject / combine

  View on GitHub
  Tool to gather Threat Intelligence indicators from publicly available sources
  ☆658Mar 14, 2019Updated 7 years ago
• mandiant / ShimCacheParser

  View on GitHub
  ☆278Apr 6, 2023Updated 3 years ago
• mandiant / Volatility-Plugins

  View on GitHub
  ☆83Jul 5, 2016Updated 9 years ago
• PaloAltoNetworks / report_to_misp

  View on GitHub
  Parse a report and import the events into MISP
  ☆30Oct 19, 2015Updated 10 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• fireeye / OpenIOC_1.1

  View on GitHub
  ☆136Jun 11, 2021Updated 4 years ago
• kbandla / APTnotes

  View on GitHub
  Various public documents, whitepapers and articles about APT campaigns
  ☆3,649Jan 1, 2024Updated 2 years ago
• fireeye / tools

  View on GitHub
  general purpose and malware specific analysis tools
  ☆101Oct 22, 2015Updated 10 years ago
• aptnotes / data

  View on GitHub
  APTnotes data
  ☆1,786Dec 16, 2024Updated last year
• mandiant / flare-wmi

  View on GitHub
  ☆433May 3, 2023Updated 3 years ago
• DefensePointSecurity / threat_note

  View on GitHub
  DPS' Lightweight Investigation Notebook
  ☆433Dec 31, 2023Updated 2 years ago
• jeffbryner / pyioc

  View on GitHub
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Nov 25, 2021Updated 4 years ago
• Yara-Rules / rules

  View on GitHub
  Repository of yara rules
  ☆4,770Apr 17, 2024Updated 2 years ago
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,931Updated this week
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• citizenlab / malware-indicators

  View on GitHub
  Citizen Lab Malware Reports
  ☆281Oct 4, 2020Updated 5 years ago
• viper-framework / viper

  View on GitHub
  Binary analysis and management framework
  ☆1,561Jun 7, 2023Updated 2 years ago
• certsocietegenerale / FIR

  View on GitHub
  Fast Incident Response
  ☆2,007Updated this week
• sroberts / cacador

  View on GitHub
  Indicator Extractor
  ☆141Jul 14, 2018Updated 7 years ago
• Xen0ph0n / YaraGenerator

  View on GitHub
  Automatic Yara Rule Generation
  ☆333Feb 2, 2016Updated 10 years ago
• ThreatHuntingProject / ThreatHunting

  View on GitHub
  An informational repo about hunting for adversaries in your IT environment.
  ☆1,863Nov 17, 2021Updated 4 years ago
• keithjjones / fileintel

  View on GitHub
  A modular Python application to pull intelligence about malicious files
  ☆123Dec 4, 2020Updated 5 years ago
• YahooArchive / PyIOCe

  View on GitHub
  Python IOC Editor
  ☆66Mar 10, 2015Updated 11 years ago
• Xen0ph0n / MIDAS

  View on GitHub
  Metadata Inspection Database Alerting System
  ☆42Jul 26, 2013Updated 12 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• MISP / MISP

  View on GitHub
  MISP (core software) - Open Source Threat Intelligence and Sharing Platform
  ☆6,256Apr 25, 2026Updated last week
• SekoiaLab / Fastir_Collector

  View on GitHub
  ☆520Jan 26, 2021Updated 5 years ago
• jjo-sec / volatility_plugins

  View on GitHub
  Volatility Plugins
  ☆22May 1, 2015Updated 11 years ago
• mitre / multiscanner

  View on GitHub
  Modular file scanning/analysis framework
  ☆622Oct 8, 2019Updated 6 years ago
• google / rekall

  View on GitHub
  Rekall Memory Forensic Framework
  ☆2,003Oct 18, 2020Updated 5 years ago
• fygrave / iocmap

  View on GitHub
  Indicator of Compromise Mapping Service
  ☆12Apr 15, 2014Updated 12 years ago
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,541Jan 12, 2026Updated 3 months ago