Alternatives and similar repositories for iocs:

Users that are interested in iocs are comparing it to the libraries listed below

• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆7Updated 9 months ago
• DCSO / Blog_CyTec
  Repository to provide files related to our blog articles.
  ☆16Updated last year
• horia141 / sdhash
  Python library for image hashing and deduplication
  ☆11Updated 9 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆15Updated last year
• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆21Updated 4 years ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 11 months ago
• d3vzer0 / cnc-relay
  Docker projects to retain beacon source IPs using C2 relaying infra
  ☆11Updated 6 years ago
• MAECProject / pefile-to-maec
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Updated 8 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 5 months ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 4 years ago
• optiv / netneedle
  Network based steganography based control channels and chat.
  ☆8Updated 8 years ago
• mitre / gocat
  Simplified go-cat agent for caldera
  ☆10Updated last year
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• nccgroup / yaml2yara
  Generate bulk YARA rules from YAML input
  ☆22Updated 5 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 5 years ago
• immunityinc / HardwareImplantRecipe
  "A Practical Recipe for Hardware Implants" presentation materials.
  ☆13Updated 4 years ago
• hrbrmstr / go-hhhash
  #️⃣ 🕸️ 👤 HTTP Headers Hashing
  ☆13Updated last year
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆12Updated last month
• g-les / macho_similarity
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆13Updated last year
• ZonkSec / indeed-recon-ng-script
  A recon-ng module for crawling Indeed.com for contacts and resumes.
  ☆12Updated 9 years ago
• vertrex / DFF
  DFF (Digital Forensics Framework)
  ☆10Updated 4 years ago
• 9b / lazyeye
  Chrome extension to extract data from websites surfed inside of chrome
  ☆18Updated 10 years ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• yaunj / vim-yara
  Yara filetype plugin for Vim.
  ☆14Updated 4 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated 7 months ago
• ohjeongwook / WindowsEventTools
  Collection Of Scripts And Utilities For Windows Event Hunting
  ☆18Updated 5 years ago
• CIRCL / pcapdj
  pcapdj - dispatch pcap files
  ☆46Updated 4 years ago
• intezer / ost-map
  ☆20Updated 4 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• wrayjustin / yaids
  YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…
  ☆23Updated 2 years ago