phish-report / IOK
IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tactics
β159Updated 2 weeks ago
Related projects: β
- Repository of Yara rules dedicated to Phishing Kits Zip filesβ202Updated this week
- π΄ββ οΈπ° Another Ransomware gang trackerβ135Updated this week
- Welcome to the SEKOIA.IO Community repository!β111Updated last month
- Open Source Platform for storing, organizing, and searching documents related to cyber threatsβ154Updated 10 months ago
- The Threat Actor Profile Guide for CTI Analystsβ89Updated last year
- Automated YARA Rule Standardization and Quality Assurance Toolβ154Updated this week
- MISP Playbooksβ167Updated last month
- Building a consolidated RSS feed for articles about cyberattacksβ54Updated this week
- Data visualization for blue teamsβ122Updated last year
- HASH (HTTP Agnostic Software Honeypot)β128Updated 4 months ago
- A collection of companies that disclose adversary TTPs after they have been breachedβ236Updated 4 months ago
- Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scrapingβ43Updated this week
- β95Updated 6 months ago
- SOARCA - The Open Source CACAO-based Security Orchestrator!β51Updated last week
- β79Updated last month
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable reporβ¦β189Updated 10 months ago
- Yet another Ransomware gang trackerβ304Updated this week
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with β¦β112Updated 2 months ago
- Cyber Underground General Intelligence Requirementsβ85Updated 7 months ago
- An opensource sigma conversion tool built using pysigmaβ90Updated 2 weeks ago
- This is a collection of threat detection rules / rules engines that I have come across.β270Updated 4 months ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reportsβ65Updated last week
- A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat inβ¦β170Updated this week
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.β176Updated 2 months ago
- Rules generated from our investigations.β186Updated last month
- pySigma Elasticsearch backendβ41Updated 3 weeks ago
- This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposesβ¦β76Updated this week
- A phishing kit collector for scavengersβ190Updated last week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contrβ¦β160Updated 3 weeks ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detectionsβ149Updated 3 weeks ago