awesome-iocs
IOC repository
A collection of sources of indicators of compromise and related tools.
A collection of sources of indicators of compromise.
817 stars
61 watching
113 forks
Language: Shell
last commit: about 1 year ago
Linked from 4 awesome lists
awesomeawesome-listiocsignatureyara-rules
Awesome IOCs / Contents | |||
| IOCs | 817 | about 1 year ago | |
Awesome IOCs / Contents / IOCs | |||
| Indicators | 817 | about 1 year ago | |
| Snort Signatures | 817 | about 1 year ago | |
| Yara Signatures | 817 | about 1 year ago | |
Awesome IOCs / Contents | |||
| Tools | 817 | about 1 year ago | |
Awesome IOCs / Contents / Tools | |||
| IOC Tools | 817 | about 1 year ago | |
| IOC Formats | 817 | about 1 year ago | |
Awesome IOCs / IOCs / Indicators | |||
| 0x27/linux.mirai | 555 | over 8 years ago | Leaked Linux.Mirai Source Code for Research/IoC Development Purposes |
| Neo23x0/signature-base | 2,509 | 11 months ago | Signature base for my scanner tools |
| aptnotes/data | 1,665 | over 1 year ago | APTnotes data |
| botherder/targetedthreats | 188 | almost 4 years ago | Collection of IOCs related to targeting of civil society |
| circl/osint-feed | Open Source Intelligence for MISP | ||
| citizenlab/malware-indicators | 267 | about 5 years ago | Citizen Lab Malware Reports |
| da667/667s_Shitlist | Hi kids, do you like cyber violence? Wanna see me destroy evil in the blink of an eyelid? | ||
| eset/malware-ioc | 1,698 | 11 months ago | Indicators of Compromises (IOC) of our various investigations |
| fireeye/iocs | 465 | almost 7 years ago | FireEye Publicly Shared Indicators of Compromise (IOCs) |
| jasonmiacono/IOCs | 10 | about 9 years ago | Indicators of compromise for threat intelligence |
| makflwana/IOCs-in-CSV-format | 12 | over 8 years ago | The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research |
| nshc-threatrecon/IoC-List | 9 | about 4 years ago | NSHC ThreatRecon IoC Repository |
| pan-unit42/iocs | 704 | 11 months ago | Indicators from Unit 42 Public Reports |
| swisscom/detections | 53 | almost 5 years ago | This repo contains threat intelligence information and threat detection indicators (IOC, IOA) shared by Swisscom CSIRT |
Awesome IOCs / IOCs / Snort Signatures | |||
| Snort Downloads | Signatures for the Snort (& Suricata) Intrusion Detection System | ||
| kingtuna/Signatures | 4 | about 10 years ago | A mixture of snort and suricata signatures |
Awesome IOCs / IOCs / Yara Signatures | |||
| 0pc0deFR/YaraRules | 33 | almost 6 years ago | Multiple rules for yara-project for detect compiler/packer/protector |
| InQuest/yara-rules | 368 | over 3 years ago | A collection of Yara rules we wish to share with the world, most probably referenced from |
| OALabs/iocs | Machine-digestible malware indicators | ||
| Yara-Rules/rules | 4,215 | over 1 year ago | Repository of yara rules |
| advanced-threat-research/Yara-Rules | 573 | almost 2 years ago | Repository of YARA rules made by McAfee ATR Team |
| citizenlab/malware-signatures | 134 | almost 9 years ago | Yara rules for malware families seen as part of targeted threats project |
| intezer/yara-rules | 126 | almost 4 years ago | Yara rules from Intezer |
| kevthehermit/YaraRules | 52 | over 9 years ago | My Yara Rules Collection |
| reversinglabs/reversinglabs-yara-rules | 776 | 11 months ago | ReversingLabs YARA Rules |
| x64dbg/yarasigs | 86 | over 6 years ago | Various Yara signatures (possibly to be included in a release later) |
Awesome IOCs / Tools / IOC Tools | |||
| InQuest/ThreatIngestor | 836 | almost 2 years ago | Flexible framework for consuming threat intelligence |
| InQuest/iocextract | 513 | about 1 year ago | Advanced Indicator of Compromise (IOC) extractor |
| Neo23x0/yarGen | 1,569 | over 1 year ago | yarGen is a generator for YARA rules |
| mandiant/ioc_writer | 201 | over 2 years ago | Provide a python library that allows for basic creation and editing of OpenIOC objects |
| yahoo/PyIOCe | 63 | over 10 years ago | Python IOC Editor |
| ninoseki/mitaka | 1,500 | 11 months ago | Browser extension to lookup IoCs/observables on many sources |
Awesome IOCs / Tools / IOC Formats | |||
| MISP Malware Information Sharing Platform & Threat Sharing format | 47 | about 1 year ago | Specifications used in the MISP project including MISP core format |
| Mitre Cyber Observable eXpression (CybOX™) | This site contains archived CybOX documentation | ||
| Mitre Malware Attribute Enumeration and Characterization (MAEC™) | A schema for understanding malware | ||
| Mitre Structured Threat Information eXpression (STIX™) | A structured language for cyber threat intelligence | ||
| Yara | The pattern matching swiss knife for malware researchers (and everyone else) | ||
| mandiant/OpenIOC_1.1 | 127 | over 4 years ago | This repository contains a revised schema, iocterms file, and other supporting documents which are the basis for a draft of a revised version of OpenIOC that we are calling OpenIOC 1.1 |
hack-with-github/awesome-hacking
inquest/awesome-yara
netanmangal/awesome-hacking
kbandla/aptnotes
zigrin-security/cakefuzzer
misp/misp
malice-plugins/yara
apr4h/cobaltstrikescan
k-atc/peid
cybercentrecanada/cccs-yara
zbetcheckin/security_list