A significant quantity of our newer intelligence and research, including Timely Threat Intel work, is available at the main Palo Alto Networks organization. As a result of this, anything not active here has been archived.

Unit 42 brings together world-renowned threat researchers, incident responders and security consultants to create an intelligence-driven, response-ready organization that's passionate about helping you proactively manage cyber risk. Our team serves as your trusted advisor to help assess and test your security controls, transform your security strategy with a threat-informed approach and respond to incidents in record time.

This GitHub organization serves as a central hub for the open-source tools, indicators of compromise (IOCs), and other data related to our research and publications.

Our repositories contain a wealth of data, primarily in the form of Indicators of Compromise (IOCs). These are typically provided in .csv or .json formats. We strive to adhere to industry best practices and standards, such as STIX/TAXII, where applicable. Some data is not as structured due to urgency.

• Website: unit42.paloaltonetworks.com

• X: @Unit42_Intel

• Breached? [email protected]