ioc-finder
Threat intel parser
An interactive tool for extracting and parsing threat intelligence data from text
Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/
158 stars
8 watching
42 forks
Language: Python
last commit: about 1 year ago cidr-rangecidr-rangesgrammar-parsergrammarshacktoberfestindicators-of-compromiseioc-finderiocsipv4malware-analysismalware-researchnetwork-dataobservableparse-urlsthreat-huntingthreat-intelligencethreat-sharingthreatintel
Related projects:
| Repository | Description | Stars |
|---|---|---|
 securityscorecard/ssc-threat-intel-iocs | Provides threat intelligence data, including IoCs, to support security research and analysis. | 71 |
 michael-yip/threattracker | Monitors and alerts on IOCs from Google Custom Search Engines and Safe Browsing APIs. | 66 |
 fr0gger/yeti | An open-source platform designed to collect, organize, and provide insights on threat intelligence data | 1 |
 intelowlproject/intelowl | A tool for managing and analyzing threat intelligence data at scale. | 3,842 |
 pan-unit42/iocs | A repository of threat intelligence indicators related to Unit 42 Public Reports. | 702 |
 opensourcesec/forager | A tool for gathering and managing threat intelligence data from various feeds. | 171 |
 yelp/threat_intel | Provides APIs for threat intelligence data from Umbrella Investigate and other sources | 274 |
 davidonzo/threat-intel | Develops and shares cyber threat intelligence information in various formats for SOC/CSIRT/CERT use. | 148 |
 inquest/threatingestor | Extracts and aggregates threat intelligence from various sources | 831 |
| inquest/iocextract | A tool to extract and deobfuscate IOCs from text corpora, allowing analysts to work with previously inaccessible data | 506 |
 jheise/threatcmd | A command-line interface to query threat intelligence data from ThreatCrowd.org | 19 |
 qtek/qradio | A tool designed to consolidate cyber threat intelligence data from multiple sources | 96 |
 sroberts/jager | Tools for extracting and analyzing threat indicators from various data sources | 82 |
 aboutsecurity/rastrea2r | A tool for hunting and tracking Internet of Things (IoT) security threats by collecting and analyzing indicators of compromise (IOCs) | 116 |
 nshc-threatrecon/ioc-list | A curated collection of IOCs (Indicators of Compromise) for threat intelligence and incident response purposes. | 9 |