Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/TheHive-Project/TheHiveDocs
Documentation of TheHive
administration-guide analyst analyzer api cortex dfir digital-forensics documentation free free-software incident-response iocs misp open-source platform rest security-incidents thehive thehive-project
Last synced: 02 Jul 2024
![](https://github.com/TheHive-Project.png)
https://github.com/TheHive-Project/TheHive
TheHive: a Scalable, Open Source and Free Security Incident Response Platform
agplv3 analyzer api cortex dfir digital-forensics free incident-management incident-response incident-response-tooling investigations iocs misp open-source orchestration platform rest scala security-incidents thehive
Last synced: 02 Jul 2024
![](https://github.com/TheHive-Project.png)
https://github.com/Neo23x0/Loki2
LOKI2 - Simple IOC and YARA Scanner
dfir incident-response iocs scanner yara
Last synced: 28 Jun 2024
![](https://github.com/Neo23x0.png)
https://github.com/threatlabz/iocs
This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
iocs malware-research malware-samples yara yara-rules
Last synced: 16 Jun 2024
![](https://github.com/threatlabz.png)
https://github.com/InQuest/omnibus
The OSINT Omnibus (beta release)
iocs osint python security security-automation threat-intelligence
Last synced: 13 Jun 2024
![](https://github.com/InQuest.png)
https://github.com/assafmo/xioc
Extract indicators of compromise from text, including "escaped" ones.
command-line command-line-tool data-mining defang escaping extract extraction indicators-of-compromise ioc iocs regex regexp text-mining text-processing
Last synced: 09 Jun 2024
![](https://github.com/assafmo.png)
https://github.com/drb-ra/C2IntelFeeds
Automatically created C2 Feeds
cobalt-strike cobaltstrike empire indicators-of-compromise iocs metasploit poshc2 threat-hunting threat-intelligence threatintel
Last synced: 05 Jun 2024
![](https://github.com/drb-ra.png)
https://github.com/cert-lv/exchange_webshell_detection
Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065)
blueteam exchange-server infosec iocs security security-audit
Last synced: 05 Jun 2024
![](https://github.com/cert-lv.png)
https://github.com/kitabisa/teler
Real-time HTTP Intrusion Detection
analyze-logs go golang ids intrusion intrusion-detection intrusion-detection-system iocs log log-analyzer logs threat threat-analyzer threat-hunting threat-intelligence threat-rules
Last synced: 02 Jun 2024
![](https://github.com/kitabisa.png)
https://github.com/go-outside-labs/sec-pentesting-toolkit
👾 𝘁𝗼𝗼𝗹𝘀 𝗳𝗼𝗿 𝘀𝗲𝗰𝘂𝗿𝗶𝘁𝘆 𝗿𝗲𝘀𝗲𝗮𝗿𝗰𝗵𝗲𝗿𝘀: 𝗽𝗲𝗻𝘁𝗲𝘀𝘁𝗶𝗻𝗴, 𝗖𝗧𝗙𝘀 & 𝘄𝗮𝗿𝗴𝗮𝗺𝗲𝘀
botnets cryptography ctf forensics gray-hacker-resources hacking infosec iocs linux malwares network penetration-testing pentesting post-exploitation reverse-engineering rubber-ducky steganography vulnerabilities wargame web-security
Last synced: 25 May 2024
![](https://github.com/go-outside-labs.png)
https://github.com/navytitanium/eitest-tools-scripts-iocs
eitest-c2 ioc iocs malicious-domains malicious-redirects malicious-url
Last synced: 17 May 2024
![](https://github.com/NavyTitanium.png)
https://github.com/Viralmaniar/DDWPasteRecon
DDWPasteRecon tool will help you identify code leak, sensitive files, plaintext passwords, password hashes. It also allow member of SOC & Blue Team to gain situational awareness of the organisation's web exposure on the pastesites. It Utilises Google's indexing of pastesites to gain targeted intelligence of the organisation. Blue & SOC teams can collect and analyse data from these indexed pastesites to better protect against unknown threats.
attacksurface blueteam blueteaming darkweb darkweb-hacking ddw hacking-tools iocs pastesites reconnaissance redteam redteam-tools redteaming soc threat-hunting threat-intelligence threat-sharing
Last synced: 07 May 2024
![](https://github.com/Viralmaniar.png)
https://github.com/TheHive-Project/Cortex
Cortex: a Powerful Observable Analysis and Active Response Engine
analysis analyzer api cortex cyber-threat-intelligence dfir digital-forensics engine free free-software incident-response iocs observable open-source python response rest scala security-incidents thehive
Last synced: 07 Apr 2024
![](https://github.com/TheHive-Project.png)
https://github.com/fox-it/cobaltstrike-extraneous-space
Historical list of {Cobalt Strike,NanoHTTPD} servers
cobaltstrike iocs nanohttpd teamserver
Last synced: 06 Apr 2024
![](https://github.com/fox-it.png)
https://github.com/mthcht/ThreatHunting-Keywords
Awesome list of keywords and artefacts for Threat Hunting sessions
awesome-list blueteam detection-engineering dfir elk-stack endpoint-security forensic hacktools incident-response iocs offensive-scripts offensive-security redteam siem sigma-rules soc splunk threat-hunting threat-intelligence threathunting
Last synced: 02 Apr 2024
![](https://github.com/mthcht.png)
https://mthcht.github.io/ThreatHunting-Keywords/
Awesome list of keywords and artefacts for Threat Hunting sessions
awesome-list blueteam detection-engineering dfir elk-stack endpoint-security forensic hacktools incident-response iocs offensive-scripts offensive-security redteam siem sigma-rules soc splunk threat-hunting threat-intelligence threathunting
Last synced: 02 Apr 2024
![](https://github.com/mthcht.png)
https://github.com/curated-intel/Ukraine-Cyber-Operations
Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.
cti iocs malware osint threat-hunting threat-intelligence ukraine yara
Last synced: 30 Mar 2024
![](https://github.com/curated-intel.png)
https://github.com/advanced-threat-research/Yara-Rules
Repository of YARA rules made by Trellix ATR Team
iocs threat-hunting threat-intelligence yara
Last synced: 19 Mar 2024
![](https://github.com/advanced-threat-research.png)