LowRegret-Scoring

LowRegret scoring is collection of python scripts used to score indicator of compromise based on LowRegret model. The model developed by John Hopkins University to respond faster to IOCs received, thus improve network defense.

Reference: https://github.com/JHUAPL/Low-Regret-Methodology

Contributors

Arwa Alomari https://github.com/malwr0a/
Spenser https://github.com/sandcatintel/

Installation

git clone https://github.com/malwr0a/LowRegret-Scoring-

Requirements

To use LowRegret-Scoring you should insert VirusTotal and IPVoid into the secrets.json file with the following format:

  {"virustotal": "YOUR_API_KEY", "void": "YOUR_API_KEY"}

Then, drop <IOCs_file_name>.csv file with the following format:

type	value
ip	<IP_IoC>
domain	<Domain_IoC>
hash	<Hash_IoC>

The APIs can be requested on the respective service websites:

Virus Total: https://www.virustotal.com/gui/join-us
IPVoid: https://www.ipvoid.com/threat-intelligence-apis/

Name		Name	Last commit message	Last commit date
Latest commit History 22 Commits
BadASN.txt		BadASN.txt
README.md		README.md
main.py		main.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

LowRegret-Scoring

Contributors

Installation

Requirements

About

Releases

Packages

Languages

malwr0a/LowRegret-Scoring-

Folders and files

Latest commit

History

Repository files navigation

LowRegret-Scoring

Contributors

Installation

Requirements

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages