Threatfox Censys is a tool to query Censys Search for IP addresses and domains and then parses the JSON and submits the results to Threatfox.
-
Updated
Jun 18, 2024 - Python
Threatfox Censys is a tool to query Censys Search for IP addresses and domains and then parses the JSON and submits the results to Threatfox.
Malicious IP source.
Quick method to extract Indicators of Compromise (IOCs) from a Threat Intel Report in PDF format.
The OSINT Omnibus (beta release)
A repository dedicated to deliver a comprehensive set of tools for integration and convenient use of Kaspersky Threat Intelligence services
Parse Ransomwatch results in python and create MDE IOC lists as you search
Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/
Scripts, YARA and IOCs from our research on the Blister malware 🩹
Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Enrich IP addresses with metadata and threat intelligence indicators.
🔍 Application for detecting command and control (C2) communication through network traffic analysis.
This will pull OTX AlienVault pulses. You can modify how far back you want to go with the days_to_go_back variable
Script for gathering IoCs from Twitter and sending them to MISP.
Explore Indicators of Compromise Automatically
DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform
A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
Add a description, image, and links to the iocs topic page so that developers can more easily learn about it.
To associate your repository with the iocs topic, visit your repo's landing page and select "manage topics."