Threat intelligence and threat detection indicators (IOC, IOA)
☆52Nov 27, 2020Updated 5 years ago
Alternatives and similar repositories for detections
Users that are interested in detections are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆22Dec 22, 2020Updated 5 years ago
- Synapse Rapid Power-up for SinkDB☆11Jun 24, 2025Updated 11 months ago
- ☆21May 28, 2026Updated 2 weeks ago
- The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research☆12Jun 10, 2017Updated 9 years ago
- Web Application for domain name monitoring / alerting☆66Aug 1, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.☆19Sep 10, 2020Updated 5 years ago
- Forensic Artifact Collection Tool Matrix☆97Nov 9, 2024Updated last year
- Random hunting ordiented yara rules☆96Mar 27, 2023Updated 3 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆14Jan 23, 2024Updated 2 years ago
- 威胁检测规则集☆15Jul 5, 2019Updated 6 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆41Jan 20, 2023Updated 3 years ago
- RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.☆11Jan 14, 2021Updated 5 years ago
- Cyber Threats Detection Rules☆14Sep 16, 2025Updated 8 months ago
- Repository of YARA rules made by Trellix ATR Team☆627Mar 18, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Detection Ideas & Rules repository.☆178Sep 10, 2021Updated 4 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Jan 31, 2024Updated 2 years ago
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 4 years ago
- This directory contains random scripts from threat hunting or malware research☆11Feb 15, 2018Updated 8 years ago
- THOR Thunderstorm Collectors☆27Jun 3, 2026Updated last week
- gundog - guided hunting in Microsoft Defender☆52Apr 29, 2021Updated 5 years ago
- NTFS file system specimens☆13May 21, 2026Updated 3 weeks ago
- Winterfell is a group of windows batch scripts to collect Windows forensics data and perform efficient, and fast incident response and th…☆52Jul 23, 2020Updated 5 years ago
- Export disassemblies into Protocol Buffers☆21Jul 18, 2025Updated 10 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Blueteam operational triage registry hunting/forensic tool.☆148Sep 2, 2025Updated 9 months ago
- ☆21Apr 19, 2024Updated 2 years ago
- A PHP script to run on your server to grab cookies through xss☆23Mar 25, 2019Updated 7 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆86Oct 23, 2020Updated 5 years ago
- VTC - Velociraptor Timeline Creator☆19May 15, 2024Updated 2 years ago
- Validates yara rules and tries to repair the broken ones.☆42Sep 5, 2020Updated 5 years ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34May 17, 2021Updated 5 years ago
- Library of threat hunts to get any user started!☆51Sep 4, 2020Updated 5 years ago
- Signature engine for all your logs☆171Nov 13, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- onigiri - remote malware triage script☆24Nov 5, 2015Updated 10 years ago
- ☆12Dec 23, 2021Updated 4 years ago
- Pushes Sysmon Configs☆91Jun 11, 2021Updated 4 years ago
- Simple SYSLOG client in Go☆23Jun 5, 2025Updated last year
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Aug 19, 2022Updated 3 years ago
- Scripts and code referenced in CrowdStrike blog posts☆341Nov 13, 2019Updated 6 years ago
- Slides and material from my conference presentations☆16Mar 30, 2024Updated 2 years ago