tobias
e62a14dafc
Generate interlinked wiki from master inventory: 397 tool pages, 15 workflow pages, 27 recipe pages, 33 category pages, plus index. All pages use [[wiki-links]] for cross-navigation between tools, workflows, recipes, and categories (1782 links total). Install zk for interactive browsing with fzf search, tag filtering, and backlink discovery. Add 'fhelp wiki' command and Makefile target. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
20 lines
884 B
Markdown
20 lines
884 B
Markdown
# ioc-parser
|
|
> Extract indicators of compromise (IOCs) from PDF reports and text files
|
|
|
|
**Category:** [[categories/gather-and-analyze-data|Gather and Analyze Data]] | **Tier:** Rich (FOR610)
|
|
**Docs:** [https://docs.remnux.org/discover-the-tools/gather+and+analyze+data](https://docs.remnux.org/discover-the-tools/gather+and+analyze+data)
|
|
|
|
## Usage
|
|
```bash
|
|
ioc_parser <report.pdf>
|
|
```
|
|
|
|
## Related Tools
|
|
- [[tools/dexray|dexray]] — Extract and decode data from antivirus quarantine files.
|
|
- [[tools/dissect|dissect]] — Perform a variety of forensics and incident response tasks u
|
|
- [[tools/dnslib|dnslib]] — Python library to encode/decode DNS wire-format packets.
|
|
- [[tools/ipwhois|ipwhois]] — Retrieve and parse whois data for IP addresses.
|
|
- [[tools/malwoverview|malwoverview]] — Query VirusTotal, Hybrid Analysis, and MalwareBazaar for mal
|
|
|
|
#ioc #extraction #threat-intel
|