Aggregator of FireHOL IP lists with HTTP-based API service and Python client package.
A collection of YARA rules created during analysis or for blog posts, categorized by Windows, Linux, and Other, covering various threats such as Banker, Crypter, Ransomware, and UAC, with specific rule files for each threat.
Aggregator of FireHOL IP lists with HTTP-based API service and Python client package.
Check the reputation of an IP address to identify potential threats.
A comprehensive list of APT groups and operations for tracking and mapping different names and naming schemes used by cybersecurity companies and antivirus vendors.
A collection of companies that disclose adversary TTPs after being breached, useful for analysis of intrusions.
A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel
PolySwarm is a malware intelligence marketplace that aggregates threat detection engines to provide early detection, unique samples, and higher accuracy.
