armbues/ioc_parser

Stars
428
Rank 101,481 (Top 2 %)
Language
Python
License
MIT License
Created almost 10 years ago
Updated almost 2 years ago

armbues

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Tool to extract indicators of compromise from security reports in PDF format

ioc-parser

IOC Parser is a tool to extract indicators of compromise from security reports in PDF format. A good collection of APT related reports with many IOCs can be found here: APTNotes.

Usage

iocp [-h] [-p INI] [-i FORMAT] [-o FORMAT] [-d] [-l LIB] FILE

FILE File/directory path to report(s)
-p INI Pattern file
-i FORMAT Input format (pdf/txt/html)
-o FORMAT Output format (csv/json/yara)
-d Deduplicate matches
-l LIB Parsing library

Installation

pip install ioc_parser

Requirements

One of the following PDF parsing libraries:

PyPDF2 - pip install pypdf2
pdfminer - pip install pdfminer

For HTML parsing support:

BeautifulSoup - pip install beautifulsoup4

For HTTP(S) support:

requests - pip install requests

SiLLM

SiLLM simplifies the process of training and running Large Language Models (LLMs) on Apple Silicon by leveraging the MLX framework.

Python

218

deep_cyber

A recurrent neural network trained with tweets from #cyber #security companies

Python

SiLLM-examples

Examples for using the SiLLM framework for training and running Large Language Models (LLMs) on Apple Silicon

Python

netscreen_honeypot

chrome-headless

Dockerfile

python-entropy

Fast entropy calculation

Python

T280

JavaScript

armbues/ioc_parser

armbues

Reviews

Repository Details

ioc-parser

Usage

Installation

Requirements

More Repositories