IOC Finder Logo

IOC Finder

0
Free
Visit Website

Parse indicators of compromise (also known as "observables" or "network data" - e.g. urls, email addresses, etc) from text. Documentation (it's interactive!) I'm looking for sponsorship for this project. I have a number of improvements and helpful features I'd like to add and would appreciate some support as I invest this time and focus. If you use this project for in a commercial capacity and/or find it useful, please consider contributing even a small amount. Thanks!

FEATURES

ALTERNATIVES

Lists of sources and utilities to hunt, detect, and prevent evildoers.

Bearded Avenger is a cybersecurity tool with various integrations and deployment instructions available.

Dorothy is a tool to test monitoring and detection capabilities for Okta environments, with modules mapped to MITRE ATT&CK® tactics.

Open Source Threat Intelligence Gathering and Processing Framework

Repository for detection content with various types of rules and payloads.

HoneyDB is a honeypot-based threat intelligence platform that provides real-time insights into attacker behavior and malicious activity on networks.

ProcFilter is a process filtering system for Windows with built-in YARA integration, designed for malware analysts to create YARA signatures for Windows environments.

Amazon GuardDuty is a threat detection service for AWS accounts.