GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → cmatthewbrooks → pyiocutils

cmatthewbrooks / pyiocutils

Licence: other
A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).

Programming Languages

python
139335 projects - #7 most used programming language

Labels

scriptscybersecurityiocsindicators

Projects that are alternatives of or similar to pyiocutils

YAFRA
YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (+22.22%)
Mutual labels:  cybersecurity, indicators
hackipy
Hacking, pen-testing, and cyber-security related tools built with Python.
Stars: ✭ 26 (+44.44%)
Mutual labels:  scripts, cybersecurity
ioc-fanger
Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Stars: ✭ 47 (+161.11%)
Mutual labels:  iocs, indicators
URL-obfuscator
Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other URL obfuscation techniques.
Stars: ✭ 101 (+461.11%)
Mutual labels:  cybersecurity
create-react-app-tailwindcss
Create React apps with no build configuration, extended with TailwindCSS and PurgeCSS
Stars: ✭ 30 (+66.67%)
Mutual labels:  scripts
RedBook
基于Threathunting-book基础上完善的狩猎视角红队handbook
Stars: ✭ 56 (+211.11%)
Mutual labels:  cybersecurity
gsvsoc cirt-playbook-battle-cards
Cyber Incident Response Team Playbook Battle Cards
Stars: ✭ 142 (+688.89%)
Mutual labels:  cybersecurity
defold-deployer
Universal build && deploy script for Defold projects
Stars: ✭ 23 (+27.78%)
Mutual labels:  scripts
argus
Argus Advanced Remote & Local Keylogger For macOS and Windows
Stars: ✭ 87 (+383.33%)
Mutual labels:  cybersecurity
SCANNER-INURLBR
Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.
Stars: ✭ 90 (+400%)
Mutual labels:  cybersecurity
BTPS-SecPack
This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…
Stars: ✭ 33 (+83.33%)
Mutual labels:  cybersecurity
Reverse-Engineering
A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.
Stars: ✭ 7,234 (+40088.89%)
Mutual labels:  cybersecurity
Windows10Tools
Tools for Windows 10
Stars: ✭ 45 (+150%)
Mutual labels:  scripts
Photoshop-Scripts
A collection of Photoshop scripts.
Stars: ✭ 53 (+194.44%)
Mutual labels:  scripts
attack-stix-data
STIX data representing MITRE ATT&CK
Stars: ✭ 118 (+555.56%)
Mutual labels:  cybersecurity
humble
A humble, and fast, security-oriented HTTP headers analyzer
Stars: ✭ 17 (-5.56%)
Mutual labels:  cybersecurity
jd shell
Node网页开发工具
Stars: ✭ 1,026 (+5600%)
Mutual labels:  scripts
magento2-checkout-success-misc-script
Add Miscellaneous HTML and JavaScript codes to Magento2 checkout conformation page
Stars: ✭ 26 (+44.44%)
Mutual labels:  scripts
EventTranscriptParser
Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
Stars: ✭ 22 (+22.22%)
Mutual labels:  cybersecurity
ldapscripts
Simple shell scripts to handle POSIX entries in an LDAP directory
Stars: ✭ 20 (+11.11%)
Mutual labels:  scripts
View All Similar Projects ➔

pyiocutils

A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).

  • ioc.py - a set of static methods grouped under the "Ioc" class to check and handle indicators
  • iocfile.py - a class to instantiate to parse a plain-text file of IOCs
  • icargs.py - a static method to handle IOC arguments

Note: this is not a reference to Mandiant's IOC XML-based file format. This is more a reference to individual domain or ip strings as well as text files containings lists of these indicators. You know - the shit with which analysts actually work.

Also note: Python 2 and 3 are both supported.

Usage

Basic usage examples were created using asciinema. If something is still unclear, file an issue so I can make this package as easy-to-use as possible.

Using pyiocutils.ioc: asciicast

Using pyiocutils.iocfile: asciicast

Using pyiocutils.iocargs (script here): asciicast

Installation

This package is not currently hosted on the Python Package Index.

> git clone https://github.com/cmatthewbrooks/pyiocutils.git
> cd pyiocutils
> pip install .

TODO

  • Host this package on the Python Package Index
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].