yara-rules
Repository of YARA rules for identifying and classifying malware.
IPsum is a daily feed of bad IPs with blacklist hit scores, providing a valuable resource for cybersecurity professionals to stay informed about malicious IP addresses. This feed is updated daily and includes IP addresses with corresponding blacklist hit scores, enabling users to identify and block malicious traffic. IPsum is a useful tool for incident response, threat hunting, and security operations teams to enhance their defenses against cyber threats.
Repository of YARA rules for identifying and classifying malware.
Scan files or process memory for Cobalt Strike beacons and parse their configuration.
Search engine for Windows executable files and hashes, providing insights into file prevalence, behavior, and security information.
A modular tool for collecting intelligence sources for files and outputting in CSV format.
Yara rule generator using VirusTotal code similarity feature code-similar-to.
Public access to Indicators of Compromise (IoCs) and other data for readers of Security Scorecard's technical blog posts and reports.