IOC Finder Logo

IOC Finder

0
Free
Visit Website

Parse indicators of compromise (also known as "observables" or "network data" - e.g. urls, email addresses, etc) from text. Documentation (it's interactive!) I'm looking for sponsorship for this project. I have a number of improvements and helpful features I'd like to add and would appreciate some support as I invest this time and focus. If you use this project for in a commercial capacity and/or find it useful, please consider contributing even a small amount. Thanks!

FEATURES

ALTERNATIVES

BotScout.com provides proactive bot detection, screening, and banning through a powerful API.

Collection of YARA signatures from recent malware research.

A threat hunting tool for Windows event logs to detect APT movements and decrease the time to uncover suspicious activity.

Pulsedive is a threat intelligence platform that provides frictionless threat intelligence for growing teams, offering features such as indicator enrichment, threat research, and API integration.

A platform providing real-time threat intelligence streams and reports on internet-exposed assets to help organizations monitor and secure their attack surface.

Tools to export data from MISP MySQL database for post-incident analysis and correlation.

A PowerShell module for threat hunting via Windows Event Logs

VirusTotal API v3 is a threat intelligence platform for scanning files, URLs, and IP addresses, and retrieving reports on threat reputation and context.