Tool to extract indicators of compromise from security reports in PDF format
☆35Mar 5, 2016Updated 10 years ago
Alternatives and similar repositories for ioc_parser
Users that are interested in ioc_parser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Various public documents, whitepapers and articles about APT campaigns☆55Apr 1, 2016Updated 9 years ago
- Python API for URL Query☆36May 22, 2016Updated 9 years ago
- Just another tool to extract Indicator of compromise (ioc) from files☆29Oct 1, 2015Updated 10 years ago
- Custom rules for yara-integrated scans☆16Jun 5, 2013Updated 12 years ago
- Ponmocup Indicators of Compromise☆11Feb 4, 2016Updated 10 years ago
- Turn a supported list of filetypes (e.g. .docx) into a markdown structured text file. Also optionally defangs indicators and extract text…☆12Mar 17, 2026Updated last week
- Maltego Transform to put entities into MISP events☆28Jul 24, 2021Updated 4 years ago
- DPS' Lightweight Investigation Notebook☆433Dec 31, 2023Updated 2 years ago
- Parse a report and import the events into MISP☆30Oct 19, 2015Updated 10 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- A collection of Yara rules I have created so far☆16Oct 26, 2020Updated 5 years ago
- Passive DNS server interface compliant to "Common Output Format"☆10Sep 19, 2016Updated 9 years ago
- Tools for VirusTotal☆37Nov 29, 2012Updated 13 years ago
- Useful scripts, rules etc. for use with YARA☆27Feb 12, 2021Updated 5 years ago
- ☆14May 30, 2018Updated 7 years ago
- Yara rules☆10Dec 10, 2019Updated 6 years ago
- ☆19Sep 2, 2018Updated 7 years ago
- Indicator Extractor☆141Jul 14, 2018Updated 7 years ago
- A Python ctypes package for libyara☆31Aug 4, 2015Updated 10 years ago
- Golang Library to interact with your MISP instance☆22Sep 12, 2019Updated 6 years ago
- Various scripts helpful in sorting collections of malware samples.☆38Aug 19, 2016Updated 9 years ago
- A set of templates for documenting threat intelligence☆75Feb 28, 2013Updated 13 years ago
- A 'Universal WHOIS' proxy server - you query it, it gives back the correct details☆42Nov 29, 2025Updated 3 months ago
- CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching☆35Apr 16, 2021Updated 4 years ago
- Tool to check DKIM-Signature of many emails and report results in a spreadsheet☆13Oct 21, 2016Updated 9 years ago
- Ops-Trust Platform - Portal☆21Aug 5, 2016Updated 9 years ago
- Shared yara rules☆30Mar 17, 2014Updated 12 years ago
- Email Abuse - A Versatile Software for Email review, analysis and reporting☆21Jul 17, 2015Updated 10 years ago
- Maltego Transforms to Query Traffic Records☆34Oct 13, 2015Updated 10 years ago
- Passive DNS visualization and Passive DNS server toolkit☆35Mar 22, 2012Updated 14 years ago
- Home to the ActorTrackr source code☆24Jun 21, 2017Updated 8 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Jun 11, 2017Updated 8 years ago
- Python libary to normalize Yara signatures☆19Oct 9, 2020Updated 5 years ago
- Malformity is a Maltego project based on the Canari framework for malicious binary and infrastructure research.☆115May 4, 2016Updated 9 years ago
- Bro Snippets☆21Nov 7, 2014Updated 11 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49May 31, 2017Updated 8 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Apr 20, 2023Updated 2 years ago
- OpenDNS Graph Miner☆45Apr 28, 2017Updated 8 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆35Jan 8, 2026Updated 2 months ago