KNWOLF Cyber Intelligence

IOC Database

Indicators of Compromise Database

Searchable database of IOCs from tracked threats. Updated continuously.

Recent IOCs

CVE-2026-33032 (Nginx UI)

Suspicious Domains

nginx-exploit[.]com mcp-admin[.]net config-backup[.]org

File Hashes (SHA256)

a1b2c3d4e5f6… # Exploit payload f6e5d4c3b2a1… # Web shell

Detection Signatures

Sigma Rule Snort Rule Yara Rule

NKAbuse Malware

File Names

marimo_update.exe notebook_patch.dll

Registry Keys

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\MarimoUpdate

Download Feeds

Last Updated: April 16, 2026 20:30 UTC