Ioc

Maltiverse automates Threat Intelligence for small and medium-sized SecOps teams, providing an effective and affordable service.

LOKI is a simple IOC and YARA Scanner for Indicators of Compromise Detection.

A library and command line interface for extracting URLs, IP addresses, MD5/SHA hashes, email addresses, and YARA rules from text corpora.

A multi-platform open source tool for triaging suspect systems and hunting for Indicators of Compromise (IOCs) across thousands of endpoints.

Converts OpenIOC v1.0 XML files into STIX Indicators, generating STIX v1.2 and CybOX v2.1 content.

Public access to Indicators of Compromise (IoCs) and other data for readers of Security Scorecard's technical blog posts and reports.

Parse IOCs from text

Repository of IOCs provided under the Apache 2.0 license

An extendable tool to extract and aggregate IOCs from threat feeds, integrates with ThreatKB and MISP.

Python package for fanging and defanging indicators of compromise in text.

TIH is an intelligence tool that helps you search for IOCs across multiple security feeds and APIs.

A simple, self-contained modular host-based IOC scanner for incident responders.

A free, fast, and flexible multi-platform IOC and YARA scanner for Windows, Linux, and macOS.