Research Tools

Content repository and knowledge base which includes complete workflow management for the development and management of rules and artifacts (IPs, Domains, Certificates, etc.).

ThreatKB

Analysis Tools

Utilities for a variety of analytical purposes.

Utilities

Consume RSS and Twitter feeds and generate ThreatKB artifacts. (pre-release state).

Threat Ingestors

Rules

A collection of Yara rules we wish to share with the world.

YARA Rules

Malware Samples

A collection of malware samples and relevant dissection information.

Malware Samples

Integration Tools

The Splunk Addon for InQuest allows a Splunk® Enterprise administrator to search and build visualizations and alerts for InQuest device logs

Splunk Addon for InQuest

Awesome YARA

A curated list of awesome YARA rules, tools, and people.