IOC-EDT is an open source web based tool for creating indicators of compromise in the OpenIOC (http://www.openioc.org) format.
☆18May 10, 2014Updated 11 years ago
Alternatives and similar repositories for ioceditor
Users that are interested in ioceditor are comparing it to the libraries listed below
Sorting:
- Unpack MIME attachments from a file and check them against virustotal.com☆44Mar 11, 2016Updated 9 years ago
- Extracts indicators of compromise (IOCs), including domain names, IPv4 addresses, email addresses, and hashes, from text.☆11Dec 10, 2017Updated 8 years ago
- Various scrips☆12Oct 19, 2022Updated 3 years ago
- X-Ways C# X-Tension API☆15May 28, 2013Updated 12 years ago
- VirusTotal Intelligence Notification Puller☆28Jun 29, 2016Updated 9 years ago
- CDPO is a tool to validate, de-duplicate, combine, query, and encrypt track data recovered from a breach.☆15Jun 23, 2017Updated 8 years ago
- API to use Cymru services☆27Dec 6, 2013Updated 12 years ago
- A tool to generate yara signatures from function blocks☆19Dec 8, 2014Updated 11 years ago
- Volatility plugin to help identify DoublePulsar implant by listing the array of pointers SrvTransaction2DispatchTable from the srv.sys dr…☆16Aug 14, 2017Updated 8 years ago
- CrowdStrike Threat Intelligence☆35Jan 14, 2023Updated 3 years ago
- Fast multipattern regular expression searching for digital forensics☆18Jul 31, 2019Updated 6 years ago
- Get USB Devices from Registry hives☆22Nov 15, 2021Updated 4 years ago
- Malware analysis tool☆22Apr 27, 2025Updated 10 months ago
- Frontend for Codex Gigas☆21Mar 6, 2017Updated 8 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆38Mar 14, 2017Updated 8 years ago
- ☆82Jul 5, 2016Updated 9 years ago
- officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …☆16Apr 28, 2016Updated 9 years ago
- A REST API server for yara event notifications. Mapping file hashes to yara signatures in Elasticsearch for easy hash lookup or finding h…☆19May 12, 2015Updated 10 years ago
- Python abstract API for PassiveTotal services in the form of libraries and command line utilities.☆86May 22, 2023Updated 2 years ago
- Extract GUIDs from .NET assemblies☆21Jun 15, 2016Updated 9 years ago
- Yaras Random☆23Feb 21, 2019Updated 7 years ago
- Python unbup script for McAfee .bup files (with some additional fun features). This script is fully implemented in python it's not just a…☆37Apr 24, 2018Updated 7 years ago
- Various Modules & Scripts for use with Viper Framework☆27Aug 20, 2019Updated 6 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Jun 11, 2017Updated 8 years ago
- Code for "Analyzing the Perceived Severity of Cybersecurity Threats Reported on Social Media".☆25Jul 1, 2019Updated 6 years ago
- Assorted documentation, scripts and tools☆39Dec 11, 2025Updated 2 months ago
- Lists of not-suitable-for-work words as YARA rules☆29Feb 2, 2026Updated 3 weeks ago
- ☆207May 3, 2023Updated 2 years ago
- Automation for VirusTotal☆31May 6, 2016Updated 9 years ago
- ☆134Jun 11, 2021Updated 4 years ago
- Manage VT Alerts☆62Oct 4, 2016Updated 9 years ago
- ☆37Feb 3, 2017Updated 9 years ago
- ☆75Feb 17, 2022Updated 4 years ago
- Utility to retrieve the Master File Table (MFT) from a live running NTFS volume and send it to a netcat listener.☆41Oct 9, 2014Updated 11 years ago
- Rekall is an endpoint security solution.☆38Feb 12, 2018Updated 8 years ago
- splunk alert script to create resilient tickets☆10Jun 8, 2016Updated 9 years ago
- Web shells for use in penetration testing☆41Mar 5, 2015Updated 10 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49May 31, 2017Updated 8 years ago
- ☆108Jul 18, 2017Updated 8 years ago