Alternatives and similar repositories for IcedID:

Users that are interested in IcedID are comparing it to the libraries listed below

• pr0xylife / Emotet
  IOC Collection 2022
  ☆57Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆85Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆51Updated 3 months ago
• MalGamy / YARA_Rules
  ☆66Updated 2 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆58Updated 2 years ago
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 6 months ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆108Updated 2 weeks ago
• eSentire / iocs
  ☆30Updated last week
• vc0RExor / Malware-Threat-Reports
  A full analysis report detailing as much as possible of a Malware or a Threat
  ☆27Updated 9 months ago
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆55Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆91Updated 2 years ago
• 0xToxin / Malware-IOCs
  Just my findings of malwares
  ☆44Updated 2 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 2 weeks ago
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆28Updated 2 years ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated last year
• albertzsigovits / malware-notes
  Notes and IoCs of fresh malware
  ☆57Updated 8 months ago
• mlgualtieri / PurpleTeamSummit
  ☆26Updated 3 years ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆55Updated 9 months ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated 10 months ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆87Updated last year
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆51Updated last year
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated 11 months ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆59Updated 2 years ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆56Updated 4 months ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆15Updated 4 years ago