IOC Generator for Microsoft Defender for Endpoint

This Python-based tool efficiently generates Indicators of Compromise (IOCs) for integration with Microsoft Defender for Endpoint.

Features

Support for Multiple IOC Types: Handle FileSha256, IpAddress, Url, and DomainName.
Dynamic Input Handling: Customizable actions, severity levels, and more based on user input.
Flexible Output: Outputs formatted IOC data ready for import into Microsoft Defender for Endpoint dashboard.
User-Friendly: Clear prompts and guidance through the data entry process.

Getting Started

Prerequisites

Python 3.x

Installation

Usage

Clone the repository to your local machine:

git clone https://github.com/AlexLinov/IOC-Generator.git
cd IOC-Generator
python3 ioc.gen.py

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
README.md		README.md
ioc-gen.py		ioc-gen.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

ioc-gen.py

ioc-gen.py

Repository files navigation

IOC Generator for Microsoft Defender for Endpoint

Features

Getting Started

Prerequisites

Installation

Usage

About

Releases

Packages

Languages

AlexLinov/IOC-Generator

Folders and files

Latest commit

History

README.md

README.md

ioc-gen.py

ioc-gen.py

Repository files navigation

IOC Generator for Microsoft Defender for Endpoint

Features

Getting Started

Prerequisites

Installation

Usage

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages