ninoseki/ioc-extractor external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ninoseki/ioc-extractor

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ninoseki/ioc-extractor)

Close

ninoseki / ioc-extractorView on GitHubMore

• External links
• Readme badge

An npm package for extracting common IoC (Indicator of Compromise) from a block of text

☆63Apr 11, 2026Updated 3 weeks ago

Alternatives and similar repositories for ioc-extractor

Users that are interested in ioc-extractor are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ninoseki / iocingestor

  View on GitHub
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Feb 6, 2024Updated 2 years ago
• haxrob / gtpdoor-scan

  View on GitHub
  ☆23Mar 17, 2024Updated 2 years ago
• ninoseki / phishing_kits_2021

  View on GitHub
  A dataset of phishing kits in the wild
  ☆15Jun 1, 2024Updated last year
• 2igosha / sunburst_dga

  View on GitHub
  ☆22Dec 22, 2020Updated 5 years ago
• InQuest / iocextract

  View on GitHub
  Defanged Indicator of Compromise (IOC) Extractor.
  ☆576Aug 28, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• hpthreatresearch / iocs

  View on GitHub
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆28Apr 10, 2024Updated 2 years ago
• ninoseki / fanger

  View on GitHub
  An npm package to defang and refang IoC
  ☆13Apr 11, 2026Updated 3 weeks ago
• stairwell-inc / threat-research

  View on GitHub
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Jan 31, 2024Updated 2 years ago
• ruppde / yara_rules

  View on GitHub
  Yara rules
  ☆21Mar 27, 2023Updated 3 years ago
• ditekshen / is-wos

  View on GitHub
  Information Stealers Wall of Sheep (IS-WOS)
  ☆11Nov 13, 2020Updated 5 years ago
• jasonsford / intel_collector

  View on GitHub
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆31Nov 6, 2023Updated 2 years ago
• cabve / CbR

  View on GitHub
  Queries for Carbon Black Response
  ☆11Feb 11, 2020Updated 6 years ago
• PaloAltoNetworks / pyjarm

  View on GitHub
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Mar 23, 2025Updated last year
• idiom / pftriage

  View on GitHub
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Jul 2, 2020Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ninoseki / ukemi

  View on GitHub
  A CLI tool for querying passive DNS services
  ☆43Dec 15, 2023Updated 2 years ago
• RedyOpsResearchLabs / CVE-2020-7283-McAfee-Total-Protection-MTP-16.0.R26-EoP

  View on GitHub
  ☆13Jul 14, 2020Updated 5 years ago
• Cymmetria / micros_honeypot

  View on GitHub
  MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality …
  ☆17Sep 25, 2018Updated 7 years ago
• sbousseaden / Slides

  View on GitHub
  Misc Threat Hunting Resources
  ☆378Jan 26, 2023Updated 3 years ago
• t4d / PhishingKit-Yara-Rules

  View on GitHub
  Repository of Yara rules dedicated to Phishing Kits Zip files
  ☆239Apr 8, 2026Updated 3 weeks ago
• ninoseki / miteru

  View on GitHub
  A phishing kit collector for scavengers
  ☆222Jan 22, 2026Updated 3 months ago
• ciscocsirt / dhp

  View on GitHub
  Simple Docker Honeypot server emulating small snippets of the Docker HTTP API
  ☆33Oct 6, 2020Updated 5 years ago
• reb311ion / CapaExplorer

  View on GitHub
  Capa analysis importer for Ghidra.
  ☆64Dec 2, 2020Updated 5 years ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• cyberbutler / bash-logging-elk

  View on GitHub
  ☆19Aug 2, 2020Updated 5 years ago
• Silv3rHorn / autoripy

  View on GitHub
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆12Aug 4, 2024Updated last year
• StamusNetworks / surimisp

  View on GitHub
  Check IOC provided by a MISP instance on Suricata events
  ☆18Jun 4, 2019Updated 6 years ago
• MISP / misp-warninglists

  View on GitHub
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆621Apr 28, 2026Updated last week
• colincowie / viper-plugins

  View on GitHub
  Plugins for the Viper Framework
  ☆14Sep 21, 2019Updated 6 years ago
• carbonblack / active_c2_ioc_public

  View on GitHub
  Active C2 IoCs
  ☆99Nov 28, 2022Updated 3 years ago
• telekom-security / malware_analysis

  View on GitHub
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆122Mar 4, 2026Updated 2 months ago
• blackberry / threat-research-and-intelligence

  View on GitHub
  BlackBerry Threat Research & Intelligence
  ☆99Oct 20, 2023Updated 2 years ago
• ninoseki / abuse_whois

  View on GitHub
  Yet another way to find where to report an abuse
  ☆31Jan 25, 2025Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• MarkBaggett / domain_stats2

  View on GitHub
  ☆14Feb 8, 2020Updated 6 years ago
• ninoseki / tansaku

  View on GitHub
  Yet another dirbuster tool
  ☆13Oct 16, 2023Updated 2 years ago
• nmantani / FileInsight-plugins

  View on GitHub
  FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis
  ☆164Dec 15, 2024Updated last year
• ecstatic-nobel / pOSINT

  View on GitHub
  Gather Open-Source Intelligence using PowerShell.
  ☆182Oct 20, 2019Updated 6 years ago
• DissectMalware / MalwareCMDMonitor

  View on GitHub
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Sep 18, 2018Updated 7 years ago
• QueenSquishy / Zombie

  View on GitHub
  General Content
  ☆27Dec 23, 2025Updated 4 months ago
• zux0x3a / 0xsp

  View on GitHub
  ☆16Jun 16, 2021Updated 4 years ago