CalvinBackup/ShadowShells
1
0
Fork 0
mirror of https://github.com/JGoyd/ShadowShells.git synced 2026-02-12 21:32:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
1 Commit 1 Branch 0 Tags
5da4d1ce41c03907e5634a7ff2814ed3aa0b3d80
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Joseph Goydish II 5da4d1ce41 Enhance README with purpose and usage instructions 
Added purpose and intended use sections to README.
2025-12-10 18:12:11 -05:00
README.md
Enhance README with purpose and usage instructions
2025-12-10 18:12:11 -05:00

README.md

ShadowShells | Observed Indicators (Confirmed Malicious)

Purpose

This package contains sanitized traces and echoes of observed entities | domains, UUIDs, processes, and signature strings | directly linked to confirmed command-and-control activity.

All data here is metadata only. No raw logs, PCAPs, or sensitive artifacts are included. ShadowShells acts as a watchtower, cataloging and guiding detection of hostile infrastructure.

Intended Use

  • Ingest iocs.csv into monitoring tooling, SIEM rules, DNS tracking, or threat-hunting routines.
  • Apply blocklist.txt for defensive blocking or sinkholing.
  • Consult key_hits.txt to track behaviors or patterns: shell anomalies, proxy/tunnel strings, beacon pulses.

License

Defensive use only. Provided as-is. No warranty.

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 57 KiB
Languages
CSV 100%