pan-unit42/iocs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

pan-unit42/iocs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/pan-unit42/iocs)

Close

pan-unit42 / iocsView on GitHubMore

• External links
• Readme badge

Indicators from Unit 42 Public Reports

☆728Aug 17, 2025Updated 6 months ago

Alternatives and similar repositories for iocs

Users that are interested in iocs are comparing it to the libraries listed below

• pan-unit42 / public_tools

  View on GitHub
  ☆715Oct 28, 2022Updated 3 years ago
• eset / malware-ioc

  View on GitHub
  Indicators of Compromises (IOC) of our various investigations
  ☆1,922Feb 20, 2026Updated last week
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,874Feb 5, 2026Updated last month
• mandiant / iocs

  View on GitHub
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆473Jan 19, 2019Updated 7 years ago
• sophoslabs / IoCs

  View on GitHub
  Sophos-originated indicators-of-compromise from published reports
  ☆653Jan 16, 2026Updated last month
• armbues / ioc_parser

  View on GitHub
  Tool to extract indicators of compromise from security reports in PDF format
  ☆439Feb 24, 2023Updated 3 years ago
• StrangerealIntel / DailyIOC

  View on GitHub
  IOC from articles, tweets for archives
  ☆318Dec 12, 2023Updated 2 years ago
• RedDrip7 / APT_Digital_Weapon

  View on GitHub
  Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
  ☆960Aug 28, 2025Updated 6 months ago
• advanced-threat-research / Yara-Rules

  View on GitHub
  Repository of YARA rules made by Trellix ATR Team
  ☆625Mar 18, 2025Updated 11 months ago
• InQuest / ThreatIngestor

  View on GitHub
  Extract and aggregate threat intelligence.
  ☆906Jan 31, 2024Updated 2 years ago
• InQuest / yara-rules

  View on GitHub
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆387May 11, 2022Updated 3 years ago
• pan-unit42 / playbook_viewer

  View on GitHub
  ☆176Jun 25, 2024Updated last year
• KasperskyLab / klara

  View on GitHub
  Kaspersky's GReAT KLara
  ☆732Jul 24, 2024Updated last year
• SupportIntelligence / Icewater

  View on GitHub
  16,432 Free Yara rules created by
  ☆391Jun 1, 2019Updated 6 years ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,515Jan 24, 2023Updated 3 years ago
• pan-unit42 / tweets

  View on GitHub
  ☆129Jan 29, 2024Updated 2 years ago
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,486Jan 12, 2026Updated last month
• sroberts / awesome-iocs

  View on GitHub
  A collection of sources of indicators of compromise.
  ☆953May 8, 2025Updated 9 months ago
• CyberMonitor / APT_CyberCriminal_Campagin_Collections

  View on GitHub
  APT & CyberCriminal Campaign Collection
  ☆4,043Jul 25, 2024Updated last year
• citizenlab / malware-indicators

  View on GitHub
  Citizen Lab Malware Reports
  ☆277Oct 4, 2020Updated 5 years ago
• blackorbird / APT_REPORT

  View on GitHub
  Interesting APT Report Collection And Some Special IOCs
  ☆2,915Feb 24, 2026Updated last week
• NextronSystems / APTSimulator

  View on GitHub
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,715Sep 23, 2025Updated 5 months ago
• AlienVault-OTX / yabin

  View on GitHub
  A Yara rule generator for finding related samples and hunting
  ☆162Sep 11, 2022Updated 3 years ago
• Neo23x0 / Loki

  View on GitHub
  Loki - Simple IOC and YARA Scanner
  ☆3,726Jan 12, 2026Updated last month
• aptnotes / data

  View on GitHub
  APTnotes data
  ☆1,773Dec 16, 2024Updated last year
• reversinglabs / reversinglabs-yara-rules

  View on GitHub
  ReversingLabs YARA Rules
  ☆898Nov 3, 2025Updated 4 months ago
• yeti-platform / yeti

  View on GitHub
  Your Everyday Threat Intelligence
  ☆1,954Feb 12, 2026Updated 3 weeks ago
• Yara-Rules / rules

  View on GitHub
  Repository of yara rules
  ☆4,722Apr 17, 2024Updated last year
• StrangerealIntel / CyberThreatIntel

  View on GitHub
  Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
  ☆723Dec 26, 2022Updated 3 years ago
• Kafeine / public

  View on GitHub
  ☆19Sep 2, 2018Updated 7 years ago
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆666Updated this week
• JPCERTCC / aa-tools

  View on GitHub
  Artifact analysis tools by JPCERT/CC Analysis Center
  ☆462Aug 14, 2025Updated 6 months ago
• ThreatHuntingProject / ThreatHunting

  View on GitHub
  An informational repo about hunting for adversaries in your IT environment.
  ☆1,854Nov 17, 2021Updated 4 years ago
• mandiant / flare-floss

  View on GitHub
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,897Feb 23, 2026Updated last week
• olafhartong / ThreatHunting

  View on GitHub
  A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
  ☆1,173Jul 26, 2023Updated 2 years ago
• Neo23x0 / yarGen

  View on GitHub
  yarGen is a generator for YARA rules
  ☆1,776Jan 10, 2026Updated last month
• certsocietegenerale / fame

  View on GitHub
  FAME Automates Malware Evaluation
  ☆929Dec 16, 2025Updated 2 months ago
• OTRF / Security-Datasets

  View on GitHub
  Re-play Security Events
  ☆1,725Mar 20, 2024Updated last year
• volexity / threat-intel

  View on GitHub
  Signatures and IoCs from public Volexity blog posts.
  ☆364Dec 4, 2025Updated 3 months ago