Skip to content

geopd/IOC-Validator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ioc_validator.sh
ioc_validator.sh
 
 

Repository files navigation

IoC-Validator

A simple script to validate IoCs (URLs, Domains, IP Addresses and Hashes) with virustotal/AbuseIPDB API and get output in a .csv file.

Usage

  • Initialize Script

    bash ioc_validator.sh

    The script will prompt for servicetype, API key, and IOC list.

  • Add APIKEY, IoC file name and malicious threshold in script

    bash ioc_validator.sh -s <SERVICE_TYPE>

    SERVICE_TYPE includes 'virustotal' and 'abuseipdb'. Default IoC filename is ioc.txt.

  • For custom APIKEY, IoC/IP file name and threshold

    bash ioc_validator.sh -s virustotal -v <VIRUS_APIKEY> -f <ioc_filename> -t <malicious_threshold>

    bash ioc_validator.sh -s abuseipdb -a <ABUSE_APIKEY> -f <ioc_filename> -t <abuseConfidenceScore>

About

A simple script to validate IoCs.

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages