Threat Intelligence
Data Hub
A human-curated feed of indicators, campaigns, and malicious packages. Structured, evidence-backed, and free to browse. For real-time verdicts, see the Threat Intelligence Feed.
437
Indicators
795
Malicious Packages
24
Campaigns
78
TTPs
437
Indicators
795
Malicious Packages
24
Campaigns
78
TTPs
Browse By
Indicators of Compromise
Domains, IPs, emails, hashes, wallets. Filter, copy, export.
437 indicators
Campaigns
Named operations tying packages, IOCs and TTPs together.
24 campaigns
Malicious Packages
By ecosystem and version. "Is this dep bad?" lookups.
795 packages
TTPs
Attack patterns mapped to MITRE ATT&CK techniques.
78 TTPs
Recent Activity
RSS2026-06-11 campaign Atomic Arch 2026-06-11 package npm/atomic-lockfile 2026-06-11 package npm/js-digest 2026-06-11 indicator olrh4mibs62l6kkuvvjyc5lrercqg5tz543r4lsw3o6mh5qb7g7sneid.onion 2026-06-11 indicator 6144d433f8a0316869877b5f834c801251bbb936e5f1577c5680878c7443c98b 2026-06-11 indicator 42b59fdbe1b72895b2951412222ebf40 2026-06-11 indicator 7883bda1ff15425f2dbe622c45a3ae105ddfa6175009bbf0b0cad9bf5c79b316 2026-06-11 indicator 47893d9badc38c54b71321263ce8178c1abb10396e0aadf9793e61ec8829e204 2026-06-11 indicator src/hooks/deps 2026-06-11 indicator scales.bpf.c 2026-06-11 indicator fardewoak/nodejs-argo 2026-06-11 ttp T1567.002
