https://github.com/volexity/threat-intel

Signatures and IoCs from public Volexity blog posts.
https://github.com/volexity/threat-intel

snort-rules suricata-rules threat-intelligence yara yara-rules

Last synced: 2 months ago
JSON representation

Signatures and IoCs from public Volexity blog posts.

• Host: GitHub
• URL: https://github.com/volexity/threat-intel
• Owner: volexity
• License: other
• Created: 2021-08-11T16:36:46.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2025-02-13T20:37:10.000Z (4 months ago)
• Last Synced: 2025-02-13T21:31:36.256Z (4 months ago)
• Topics: snort-rules, suricata-rules, threat-intelligence, yara, yara-rules
• Language: Python
• Homepage:
• Size: 941 KB
• Stars: 348
• Watchers: 57
• Forks: 56
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE.txt

Awesome Lists containing this project

• awesome-lists - Volexity TI

README

        
# threat-intel

This repository contains IoCs related to Volexity public threat intelligence blog posts.

Public blog posts related to these IoCs can be found on the [Volexity website](https://www.volexity.com/blog/).

In the past this repository was also used to store tools published by Volexity. These tools have now been moved into dedicated per-tool repositories which can be found [here](https://github.com/volexity).

## IOCs

They are organised by year, and within each year, each folder relates to a specific post.

Each post approximately follows the same folder structure - some files or folders may be missing if there is no applicable data for the post.

```text

* YYYY-MM-DD - [Title]

    * indicators

        * indicators.csv

        * snort.rules

        * yara.yar

        * suricata.rules

    * scripts

        * foo.py

    * attachments

        * anything_else.txt

```

All rules provided are subject to the 2-Clause BSD License found in "LICENSE.txt"