Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
awesome-iocs
A collection of sources of indicators of compromise.
https://github.com/sroberts/awesome-iocs
Last synced: 3 days ago
JSON representation
-
IOCs
-
Indicators
- da667/667s_Shitlist - Hi kids, do you like cyber violence? Wanna see me destroy evil in the blink of an eyelid?
- circl/osint-feed - Open Source Intelligence for MISP.
- 0x27/linux.mirai - Leaked Linux.Mirai Source Code for Research/IoC Development Purposes.
- Neo23x0/signature-base - Signature base for my scanner tools.
- aptnotes/data - APTnotes data.
- botherder/targetedthreats - Collection of IOCs related to targeting of civil society.
- citizenlab/malware-indicators - Citizen Lab Malware Reports.
- eset/malware-ioc - Indicators of Compromises (IOC) of our various investigations.
- fireeye/iocs - FireEye Publicly Shared Indicators of Compromise (IOCs).
- jasonmiacono/IOCs - Indicators of compromise for threat intelligence.
- makflwana/IOCs-in-CSV-format - The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research.
- nshc-threatrecon/IoC-List - NSHC ThreatRecon IoC Repository
- pan-unit42/iocs - Indicators from Unit 42 Public Reports.
- swisscom/detections - This repo contains threat intelligence information and threat detection indicators (IOC, IOA) shared by Swisscom CSIRT.
-
Snort Signatures
- Snort Downloads - Signatures for the Snort (& Suricata) Intrusion Detection System.
- kingtuna/Signatures - A mixture of snort and suricata signatures.
-
Yara Signatures
- OALabs/iocs - Machine-digestible malware indicators.
- 0pc0deFR/YaraRules - Multiple rules for yara-project for detect compiler/packer/protector.
- InQuest/yara-rules - A collection of Yara rules we wish to share with the world, most probably referenced from [http://blog.inquest.net](http://blog.inquest.net).
- Yara-Rules/rules - Repository of yara rules.
- advanced-threat-research/Yara-Rules - Repository of YARA rules made by McAfee ATR Team
- citizenlab/malware-signatures - Yara rules for malware families seen as part of targeted threats project.
- intezer/yara-rules - Yara rules from Intezer.
- kevthehermit/YaraRules - My Yara Rules Collection.
- reversinglabs/reversinglabs-yara-rules - ReversingLabs YARA Rules.
- x64dbg/yarasigs - Various Yara signatures (possibly to be included in a release later).
-
-
Tools
-
IOC Tools
- InQuest/ThreatIngestor - Flexible framework for consuming threat intelligence.
- Neo23x0/yarGen - yarGen is a generator for YARA rules.
- mandiant/ioc_writer - Provide a python library that allows for basic creation and editing of OpenIOC objects.
- yahoo/PyIOCe - Python IOC Editor.
- ninoseki/mitaka - Browser extension to lookup IoCs/observables on many sources.
- InQuest/iocextract - Advanced Indicator of Compromise (IOC) extractor.
-
IOC Formats
- MISP Malware Information Sharing Platform & Threat Sharing format - Specifications used in the MISP project including MISP core format.
- Yara - The pattern matching swiss knife for malware researchers (and everyone else).
- mandiant/OpenIOC_1.1 - This repository contains a revised schema, iocterms file, and other supporting documents which are the basis for a draft of a revised version of OpenIOC that we are calling OpenIOC 1.1.
- Mitre Cyber Observable eXpression (CybOX™) - This site contains archived CybOX documentation.
- Mitre Malware Attribute Enumeration and Characterization (MAEC™) - A schema for understanding malware.
- Mitre Structured Threat Information eXpression (STIX™) - A structured language for cyber threat intelligence.
-
Sub Categories
Keywords
yara
9
ioc
6
threat-intelligence
5
malware-research
5
indicators-of-compromise
4
threat-hunting
4
malware
4
misp
3
threat-sharing
3
yara-rules
3
dfir
3
osint
3
yara-signatures
2
malware-analysis
2
threatintel
2
analysis
1
apt
1
technical-indicators
1
detection
1
indicators
1
threat-detection
1
signature
1
scanner
1
hash
1
anti-virus
1
mirai-source
1
mirai
1
malware-development
1
linux
1
leak
1
iot
1
ioc-development
1
library
1
ioc-extractor
1
defang
1
decoding
1
base64
1
standard
1
protocol
1
misp-taxonomy
1
misp-format
1
json-format
1
internet-draft
1
information-exchange
1
security
1
chrome-extension
1
python
1
malwareanalysis
1
threat-intelligence-platform
1
threat-feeds
1