sroberts / Awesome Iocs
Licence: other
A collection of sources of indicators of compromise.
Stars: ✭ 526
Programming Languages
shell
77523 projects
Projects that are alternatives of or similar to Awesome Iocs
Loki
Loki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+321.48%)
Mutual labels: signature, ioc
Signature Base
Signature base for my scanner tools
Stars: ✭ 1,212 (+130.42%)
Mutual labels: signature, ioc
Patrowlmanager
PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (-30.99%)
Mutual labels: ioc
Multi Party Ecdsa
Rust implementation of {t,n}-threshold ECDSA (elliptic curve digital signature algorithm).
Stars: ✭ 339 (-35.55%)
Mutual labels: signature
Dss
Digital Signature Service : creation, extension and validation of advanced electronic signatures
Stars: ✭ 415 (-21.1%)
Mutual labels: signature
Python Iocextract
Defanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (-42.97%)
Mutual labels: ioc
Typescript Ioc
A Lightweight annotation-based dependency injection container for typescript.
Stars: ✭ 427 (-18.82%)
Mutual labels: ioc
Scatterwebextension
Extension that allows you to sign transactions with your private keys securely from within the browser without ever exposing them.
Stars: ✭ 359 (-31.75%)
Mutual labels: signature
Midway
🍔 A Node.js Serverless Framework for front-end/full-stack developers. Build the application for next decade. Works on AWS, Alibaba Cloud, Tencent Cloud and traditional VM/Container. Super easy integrate with React and Vue. 🌈
Stars: ✭ 5,080 (+865.78%)
Mutual labels: ioc
Summer
这是一个支持分布式和集群的java游戏服务器框架,可用于开发棋牌、回合制等游戏。基于netty实现高性能通讯,支持tcp、http、websocket等协议。支持消息加解密、攻击拦截、黑白名单机制。封装了redis缓存、mysql数据库的连接与使用。轻量级,便于上手。
Stars: ✭ 336 (-36.12%)
Mutual labels: ioc
Linux.mirai
Leaked Linux.Mirai Source Code for Research/IoC Development Purposes
Stars: ✭ 466 (-11.41%)
Mutual labels: ioc
Jodd
Jodd! Lightweight. Java. Zero dependencies. Use what you like.
Stars: ✭ 3,616 (+587.45%)
Mutual labels: ioc
Jot
Jot is a library for persisting and applying .NET application state.
Stars: ✭ 496 (-5.7%)
Mutual labels: ioc
Awesome IOCs 
An awesome collection of indicators of compromise (and a few IOC related tools).
Contents
IOCs
Indicators
- 0x27/linux.mirai - Leaked Linux.Mirai Source Code for Research/IoC Development Purposes.
- Neo23x0/signature-base - Signature base for my scanner tools.
- aptnotes/data - APTnotes data.
- botherder/targetedthreats - Collection of IOCs related to targeting of civil society.
- circl/osint-feed - Open Source Intelligence for MISP.
- citizenlab/malware-indicators - Citizen Lab Malware Reports.
- da667/667s_Shitlist - Hi kids, do you like cyber violence? Wanna see me destroy evil in the blink of an eyelid?
- eset/malware-ioc - Indicators of Compromises (IOC) of our various investigations.
- fireeye/iocs - FireEye Publicly Shared Indicators of Compromise (IOCs).
- jasonmiacono/IOCs - Indicators of compromise for threat intelligence.
- makflwana/IOCs-in-CSV-format - The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research.
- nshc-threatrecon/IoC-List - NSHC ThreatRecon IoC Repository
- pan-unit42/iocs - Indicators from Unit 42 Public Reports.
- swisscom/detections - This repo contains threat intelligence information and threat detection indicators (IOC, IOA) shared by Swisscom CSIRT.
Snort Signatures
- Snort Downloads - Signatures for the Snort (& Suircata) Intrusion Detection System.
- kingtuna/Signatures - A mixture of snort and suricata signatures.
Yara Signatures
- 0pc0deFR/YaraRules - Multiple rules for yara-project for detect compiler/packer/protector.
- advanced-threat-research/Yara-Rules - Repository of YARA rules made by McAfee ATR Team
- InQuest/yara-rules - A collection of Yara rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
- OALabs/iocs - Machine-digestible malware indicators.
- Yara-Rules/rules - Repository of yara rules.
- citizenlab/malware-signatures - Yara rules for malware families seen as part of targeted threats project.
- intezer/yara-rules - Yara rules from Intezer.
- kevthehermit/YaraRules - My Yara Rules Collection.
- x64dbg/yarasigs - Various Yara signatures (possibly to be included in a release later).
Tools
IOC Tools
- InQuest/ThreatIngestor - Flexible framework for consuming threat intelligence.
- InQuest/iocextract - Advanced Indicator of Compromise (IOC) extractor.
- Neo23x0/yarGen - yarGen is a generator for YARA rules.
- mandiant/ioc_writer - Provide a python library that allows for basic creation and editing of OpenIOC objects.
- yahoo/PyIOCe - Python IOC Editor.
- ninoseki/mitaka - Browser extension to lookup IoCs/observables on many sources.
IOC Formats
- MISP Malware Information Sharing Platform & Threat Sharing format - Specifications used in the MISP project including MISP core format.
- Mitre Cyber Observable eXpression (CybOX™) - This site contains archived CybOX documentation.
- Mitre Malware Attribute Enumeration and Characterization (MAEC™) - A schema for understanding malware.
- Mitre Structured Threat Information eXpression (STIX™) - A structured language for cyber threat intelligence.
- Yara - The pattern matching swiss knife for malware researchers (and everyone else).
- mandiant/OpenIOC_1.1 - This repository contains a revised schema, iocterms file, and other supporting documents which are the basis for a draft of a revised version of OpenIOC that we are calling OpenIOC 1.1.
License
This content uses the CC0 1.0 Universal (CC0 1.0) Public Domain Dedication license.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].