Research Tools

Content repository and knowledge base which includes complete workflow management for the development and management of rules and artifacts (IPs, Domains, Certificates, etc.).


Analysis Tools

Consume RSS and Twitter feeds and generate ThreatKB artifacts. (pre-release state).

Threat Ingestors


A collection of Yara rules we wish to share with the world.

YARA Rules

Malware Samples

A collection of malware samples and relevant dissection information.

Malware Samples

Integration Tools

The Splunk Addon for InQuest allows a Splunk® Enterprise administrator to search and build visualizations and alerts for InQuest device logs

Splunk Addon for InQuest

Awesome YARA

A curated list of awesome YARA rules, tools, and people.

Awesome YARA