OpenIOC 1.1 Editor
The FireEye OpenIOC 1.1 Editor is a free tool that provides an interface for managing data and manipulating the logical structures of v1.1 OpenIOCs. IOCs are XML documents that help incident responders capture diverse information about threats, including attributes of malicious files, characteristics of registry changes and artifacts in memory. The IOC Editor includes:
- Manipulation of the logical structures that define the IOC
- Application of meta-information to IOCs, including detailed descriptions or arbitrary labels
- Conversion of IOCs into XPath filters
- Management of lists of “terms” used within IOCs
NOTE ON APP VERSIONS: We have two versions of OpenIOC Editor available on the FireEye Market. This version, 3.2 is the OpenIOC 1.1 editor. This is the current version of OpenIOC, used in our Endpoint Security (formerly known as HX) product. The previous version, 2.2 is the OpenIOC 1.0 editor, available here. It is the legacy version of OpenIOC, but it is still used in some tools.
The Terms of Use for this software are subject to the licensing and terms outlined in the freeware app.
Support
| Developer: | FireEye |
| Contact: | Community |
| Resources: | User Guide |
| OpenIOC 1.1 |
App Info
| Version: | 3.2.0 |
| Platform: | Windows |
| Requirements: | Windows XP, Windows Vista, Windows 7 (32-bit and 64-bit), Windows 8.1 (32 and 64 bit), Windows 10 (32 and 64 bit) |
| Size: | 2.34 MB |
| MD5: | 3ee56f400b4d8f7e53858359eda9487c |
| SHA1: | 3ae2fa58949e2a965b35a3199c07291f3dab9055 |
| SHA256: | 4b6dcb6b99b14eb4ebdc70730be588bf5f4fd202924b61b7191060fb1b270187 |