Python tools for IOC (Indicator of Compromise) handling
☆96Nov 25, 2021Updated 4 years ago
Alternatives and similar repositories for pyioc
Users that are interested in pyioc are comparing it to the libraries listed below
Sorting:
- Find useful stuff in pastebin☆23Apr 10, 2013Updated 12 years ago
- Network Block Device Server for windows with a DFIR/forensic focus.☆96Mar 31, 2017Updated 8 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆40Oct 9, 2024Updated last year
- Indicator of Compromise Mapping Service☆12Apr 15, 2014Updated 11 years ago
- Python IOC Editor☆65Mar 10, 2015Updated 11 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆41Jan 20, 2023Updated 3 years ago
- Passive Bitcoin Project☆10Aug 10, 2015Updated 10 years ago
- Home to the ActorTrackr source code☆24Jun 21, 2017Updated 8 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆135Jan 14, 2016Updated 10 years ago
- misc scripts☆35Oct 23, 2018Updated 7 years ago
- A Python command line argument to object parsing library for command line application development☆14Mar 23, 2016Updated 10 years ago
- Ponmocup Indicators of Compromise☆11Feb 4, 2016Updated 10 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆98Oct 21, 2014Updated 11 years ago
- STIX Tools & Scripts☆47Dec 2, 2013Updated 12 years ago
- Spy Agency Teasing☆14Jan 2, 2015Updated 11 years ago
- Script to parse first load time for Shell Extensions loaded by user. Also enumerates all loaded Shell Extensions that are only installed …☆21Jun 8, 2015Updated 10 years ago
- A book about how to conduct digital forensic investigations with free and open source tools.☆12Apr 30, 2014Updated 11 years ago
- A collection of demisto tools☆20Dec 29, 2025Updated 2 months ago
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆44Jan 31, 2021Updated 5 years ago
- Extract information from MISP via the API☆16Jul 18, 2016Updated 9 years ago
- VPS infrastructure found in HT dumps☆26Jul 10, 2015Updated 10 years ago
- Sublime Malware Research Tool☆66Oct 28, 2024Updated last year
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆473Jan 19, 2019Updated 7 years ago
- This script is used as a supplement to vulnerability assessment tools such as Nessus, Retina, and various other scanners that are used in…☆19Dec 1, 2017Updated 8 years ago
- CRITs - Collaborative Research Into Threats☆911Jul 29, 2019Updated 6 years ago
- Download all malicious files from a Kippo SSH honeypot database☆23Mar 24, 2014Updated 11 years ago
- Lutech TMS EHAT-NG☆13Jul 8, 2017Updated 8 years ago
- Investigation data from two reports around the Blue Coat networking kit.☆17Apr 15, 2014Updated 11 years ago
- malware-encyclopedias is a set of tools to gather malware names and descriptions☆19May 19, 2016Updated 9 years ago
- python SDK for CIFv2☆13Nov 5, 2019Updated 6 years ago
- Data exfiltration PoC scripts☆25Sep 11, 2015Updated 10 years ago
- Threat Feed Aggregation, Made Easy☆169Jul 13, 2020Updated 5 years ago
- CRITs IOC Visualization in Maltego☆28Jan 8, 2015Updated 11 years ago
- ELK configuration files for Forensic Analysts and Incident Handlers (unmaintained)☆179Jul 10, 2019Updated 6 years ago
- Bro-IDS scripts☆50Sep 12, 2016Updated 9 years ago
- SQL scripts for querying event logs☆21Jul 12, 2017Updated 8 years ago
- Pool Overflow in OpenVpn NDIS TAP Driver☆17Nov 3, 2015Updated 10 years ago
- Detect malicious domain, Blablablablabla☆27Jan 8, 2017Updated 9 years ago