iocee

package module
v0.1.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 27, 2017 License: BSD-3-Clause Imports: 1 Imported by: 1

README

IOCee

Extract potential IOCs from unstructured text

GoDoc Build Status

IOCee is a simple tool that reads a stream of text from standard input and searches for potential IOC values in it. When it encounters a value that could be an IOC (e.g. a domain name, IP address, URL or hash) it generates all potential variations of it and prints each of them on a separate line. The output data can then be used with other tools such as bloom, which expect one value per line.

Usage

To extract IOCs from a file:

cat filename.txt | iocee

To interactively extract IOCs (useful for testing):

iocee --interactive

Installation & Usage

To install the command line tool:

make install

To run the tests:

make test

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func Parse 

func Parse(line string) []string

Types

type Parser 

type Parser func(string) []string

A parser takes an input string and produces a list of output strings (0 or more)

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.