sophoslabs/IoCs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sophoslabs/IoCs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sophoslabs/IoCs)

Close

sophoslabs / IoCsView on GitHubMore

• External links
• Readme badge

Sophos-originated indicators-of-compromise from published reports

☆652Jan 16, 2026Updated 2 months ago

Alternatives and similar repositories for IoCs

Users that are interested in IoCs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• pan-unit42 / iocs

  View on GitHub
  Indicators from Unit 42 Public Reports
  ☆726Aug 17, 2025Updated 7 months ago
• eset / malware-ioc

  View on GitHub
  Indicators of Compromises (IOC) of our various investigations
  ☆1,934Mar 19, 2026Updated last week
• advanced-threat-research / Yara-Rules

  View on GitHub
  Repository of YARA rules made by Trellix ATR Team
  ☆627Mar 18, 2025Updated last year
• reversinglabs / reversinglabs-yara-rules

  View on GitHub
  ReversingLabs YARA Rules
  ☆900Nov 3, 2025Updated 4 months ago
• gendigitalinc / ioc

  View on GitHub
  Threat Intel IoCs + bits and pieces of dark matter. Published by Gen Threat Labs.
  ☆438Mar 20, 2026Updated last week
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆668Updated this week
• executemalware / Malware-IOCs

  View on GitHub
  ☆512Oct 7, 2024Updated last year
• Cisco-Talos / IOCs

  View on GitHub
  Indicators of Compromise
  ☆263Mar 12, 2026Updated 2 weeks ago
• bartblaze / Yara-rules

  View on GitHub
  Collection of private Yara rules.
  ☆379Jan 28, 2026Updated 2 months ago
• StrangerealIntel / DailyIOC

  View on GitHub
  IOC from articles, tweets for archives
  ☆318Dec 12, 2023Updated 2 years ago
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,898Mar 21, 2026Updated last week
• SophosRapidResponse / OSQuery

  View on GitHub
  ☆88Mar 7, 2025Updated last year
• blackorbird / APT_REPORT

  View on GitHub
  Interesting APT Report Collection And Some Special IOCs
  ☆2,956Updated this week
• pan-unit42 / tweets

  View on GitHub
  ☆129Jan 29, 2024Updated 2 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• ThreatLabz / iocs

  View on GitHub
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆78Jan 26, 2026Updated 2 months ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,531Jan 24, 2023Updated 3 years ago
• malpedia / signator-rules

  View on GitHub
  Collection of rules created using YARA-Signator over Malpedia
  ☆143Jan 6, 2026Updated 2 months ago
• CronUp / Malware-IOCs

  View on GitHub
  ☆96May 5, 2025Updated 10 months ago
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,508Jan 12, 2026Updated 2 months ago
• WithSecureLabs / chainsaw

  View on GitHub
  Rapidly Search and Hunt through Windows Forensic Artefacts
  ☆3,484Mar 2, 2026Updated 3 weeks ago
• InQuest / yara-rules

  View on GitHub
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆388May 11, 2022Updated 3 years ago
• InQuest / ThreatIngestor

  View on GitHub
  Extract and aggregate threat intelligence.
  ☆907Jan 31, 2024Updated 2 years ago
• volexity / threat-intel

  View on GitHub
  Signatures and IoCs from public Volexity blog posts.
  ☆366Dec 4, 2025Updated 3 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• InQuest / awesome-yara

  View on GitHub
  A curated list of awesome YARA rules, tools, and people.
  ☆4,168Mar 16, 2026Updated last week
• netskopeoss / NetskopeThreatLabsIOCs

  View on GitHub
  ☆154Updated this week
• 3CORESec / MAL-CL

  View on GitHub
  MAL-CL (Malicious Command-Line)
  ☆322Jan 10, 2023Updated 3 years ago
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,224Mar 19, 2026Updated last week
• NextronSystems / APTSimulator

  View on GitHub
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,723Sep 23, 2025Updated 6 months ago
• elastic / protections-artifacts

  View on GitHub
  Elastic Security detection content for Endpoint
  ☆1,392Updated this week
• SEKOIA-IO / Community

  View on GitHub
  Welcome to the SEKOIA.IO Community repository!
  ☆181Mar 9, 2026Updated 2 weeks ago
• alexandreborges / malwoverview

  View on GitHub
  Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, M…
  ☆3,715Mar 21, 2026Updated last week
• misthi0s / Malware_IOCs

  View on GitHub
  IOCs for various malware families
  ☆11Jul 18, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• FalconForceTeam / FalconFriday

  View on GitHub
  Hunting queries and detections
  ☆891Oct 30, 2025Updated 4 months ago
• curated-intel / Log4Shell-IOCs

  View on GitHub
  A collection of intelligence about Log4Shell and its exploitation activity.
  ☆184Mar 4, 2022Updated 4 years ago
• yeti-platform / yeti

  View on GitHub
  Your Everyday Threat Intelligence
  ☆1,962Updated this week
• OTRF / Security-Datasets

  View on GitHub
  Re-play Security Events
  ☆1,729Mar 20, 2024Updated 2 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence

  View on GitHub
  Defences against Cobalt Strike
  ☆1,297Jul 14, 2022Updated 3 years ago
• swisscom / detections

  View on GitHub
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Nov 27, 2020Updated 5 years ago
• atc-project / atc-react

  View on GitHub
  A knowledge base of actionable Incident Response techniques
  ☆664May 31, 2022Updated 3 years ago