An automated Cyber Threat Intelligence (CTI) apparatus, implemented via a suite of Free & Open-source Software (FOSS)
-
Updated
Feb 24, 2024 - Python
An automated Cyber Threat Intelligence (CTI) apparatus, implemented via a suite of Free & Open-source Software (FOSS)
IOC validation with Python
IOC Generator for Microsoft Defender for Endpoints
VSIOC is a real-time Visual Studio Code extension for extracting IOCs from the active open editor
Chrome extension that extracts possible IOCs from online reports.
Browser extension to block directly entered, external or public IP v4 and v6 addresses
Rex-ing indicators out of unstructured text (like an e-mail)
Web app to calculate "indicators of compromise" confidence deprecation timelines (used with threat intel platforms such as ThreatConnect).
An overview of the Pyramid of Pain, a pyramid model that represents a scaling level of impact to threat actor operations when an indicator is successfully responded to at its assigned level.
A basic IP address IOC checker for Windows using Netstat and Wordlists, written in Python3.
Our objective is to update the indicators-of-compromise based on published reports for Zero-Day Vulnerability and Ransomware groups
Threat Intelligence & Indicators of Compromise repository.
CVE-2021-3441 CVE Check is a python script to search targets for indicators of compromise to CVE-2021-3441
Quickly generate common Indicators of Compromise (IOCs) from files with Python (now leveraging command line arguments and autocomplete to streamline it's use).
Manage loki scans over a large network.
IOCs and notes related to malware
📬 Process EML and MSG file types and extract various Indicators of Compromise.
🚨Computational Forensics is an emerging research🔎 domain. It deals with 🕵️♀️solving forensic problems🚔 using digital methods👨💻. It uses computational science to study digital evidence.
This script allows for incident responders to scope specific indicators of compromise
Add a description, image, and links to the indicators-of-compromise topic page so that developers can more easily learn about it.
To associate your repository with the indicators-of-compromise topic, visit your repo's landing page and select "manage topics."