This Python-based tool efficiently generates Indicators of Compromise (IOCs) for integration with Microsoft Defender for Endpoint.
- Support for Multiple IOC Types: Handle FileSha256, IpAddress, Url, and DomainName.
- Dynamic Input Handling: Customizable actions, severity levels, and more based on user input.
- Flexible Output: Outputs formatted IOC data ready for import into Microsoft Defender for Endpoint dashboard.
- User-Friendly: Clear prompts and guidance through the data entry process.
- Python 3.x
Clone the repository to your local machine:
git clone https://github.com/AlexLinov/IOC-Generator.git
cd IOC-Generator
python3 ioc.gen.py