team-cymru / iocs
We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.
☆9Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for iocs
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆20Updated 3 years ago
- Automate the regular transfer of AIS data into a MISP Server☆6Updated 5 months ago
- #️⃣ 🕸️ 👤 HTTP Headers Hashing☆14Updated last year
- Simplified go-cat agent for caldera☆10Updated 11 months ago
- A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.☆31Updated last month
- Setting up a training environment for MISP☆11Updated last year
- crappy set of one-off scripts and tools used for reversing and vulnerability research.☆11Updated 2 years ago
- Yara rules for malicious javascript files from public repositories or written by me.☆12Updated 3 years ago
- nmap/ndiff based scanner with template based notification system in case of infrastructure changes☆18Updated 6 years ago
- A mapping project between tags (annotations, labels) and domain names☆11Updated 6 months ago
- Chrome extension to extract data from websites surfed inside of chrome☆18Updated 9 years ago
- Repository to provide files related to our blog articles.☆15Updated 9 months ago
- Golang based web service to scan files with yara rules☆27Updated 7 years ago
- CyCAT.org API back-end server including crawlers☆30Updated last year
- vyos based isolation of networks☆11Updated 4 years ago
- Analytics for Accounting logs from Network devices☆16Updated 3 years ago
- Collect autorun records from running system☆59Updated 2 years ago
- ☆18Updated last year
- Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.☆8Updated 5 years ago
- Malware campaigns and APTs research by BlackArrow☆18Updated 4 years ago
- s3eker is an extensible way to find open S3 buckets.☆17Updated 4 years ago
- Network based steganography based control channels and chat.☆8Updated 8 years ago
- ☆15Updated 6 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 3 years ago
- automatic enumeration and maintenance of Suricata monitoring interfaces☆11Updated 4 years ago
- Python framework for manipulating bulk WHOIS data from RIRs☆19Updated 2 years ago
- ☆14Updated 6 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- CyCAT.org taxonomies☆14Updated 3 years ago
- Network Finger Printer☆16Updated 7 years ago