sroberts / awesome-iocs
A collection of sources of indicators of compromise.
☆806Updated last month
Related projects ⓘ
Alternatives and complementary repositories for awesome-iocs
- A collection of resources for Threat Hunters☆855Updated last month
- A curated list of awesome resources related to Mitre ATT&CK™ Framework☆587Updated 5 years ago
- Virtual Machine for Adversary Emulation and Threat Hunting☆1,247Updated 4 years ago
- ☆1,051Updated 5 years ago
- Extract and aggregate threat intelligence.☆831Updated 9 months ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,138Updated last year
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆531Updated this week
- An informational repo about hunting for adversaries in your IT environment.☆1,722Updated 3 years ago
- An information security preparedness tool to do adversarial simulation.☆1,102Updated 5 years ago
- DFIRTrack - The Incident Response Tracking Application☆482Updated 2 months ago
- A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.☆542Updated last year
- FAME Automates Malware Evaluation☆862Updated this week
- Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs☆718Updated 4 years ago
- Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries☆441Updated 2 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆565Updated 4 months ago
- Actionable analytics designed to combat threats☆972Updated 2 years ago
- Online hash checker for Virustotal and other services☆809Updated 6 months ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆537Updated last year
- Re-play Security Events☆1,604Updated 8 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆704Updated last year
- MISP trainings, threat intel and information sharing training materials with source code☆389Updated this week
- Defanged Indicator of Compromise (IOC) Extractor.☆506Updated 2 months ago
- Detect Tactics, Techniques & Combat Threats☆2,067Updated 2 weeks ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆899Updated 11 months ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆976Updated 2 weeks ago
- Indicators from Unit 42 Public Reports☆702Updated last month
- 16,432 Free Yara rules created by☆380Updated 5 years ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆491Updated 2 years ago
- Open Source Security Events Metadata (OSSEM)☆1,238Updated last year
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,025Updated 9 months ago