fhightower / ioc-finder

Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/
GNU Lesser General Public License v3.0
158 stars 42 forks source link
cidr-range cidr-ranges grammar-parser grammars hacktoberfest indicators-of-compromise ioc-finder iocs ipv4 malware-analysis malware-research network-data observable parse-urls threat-hunting threat-intelligence threat-sharing threatintel

IOC Finder

PyPi PyPI - Downloads CI Lint codecov License: LGPL v3 live demo

Parse indicators of compromise (also known as "observables" or "network data" - e.g. urls, email addresses, etc) from text.

📖 Documentation (it's interactive!)

💪 I'm looking for sponsorship for this project. I have a number of improvements and helpful features I'd like to add and would appreciate some support as I invest this time and focus. If you use this project for in a commercial capacity and/or find it useful, please consider contributing even a small amount. Thanks!