OpenIOC2HXIOC
This is a Python script that takes an OpenIOC 1.1 file as input and HX controller instance info and converts it into an HX indicator for real-time alerting. Existing IOC with same name in HX won’t get updated. Unsupported OpenIOC terms (e.g. PEInfo, Services, Tasks, …) ie. terms that don’t translate to lookback cache term are prefixed with the string 'notsupported' but still pushed to HX. They will never match. It tries to generate all combinations when there are AND/OR nested conditions, no matter the depth and the nodes types.
Downloading this app requires a FireEye subscription to use and is only accessible for FireEye users with an active FireEye Support account. If you already have an account, please . Otherwise, please Request Support Access or Contact Sales to learn more about becoming a FireEye customer.
Support
| Developer: | FireEye |
| Contact: | Community |
Extension Info
| Version: | 2.4 |
| Platform: | Python |
| Requirements: | Python |
| Size: | 0.01 MB |
| MD5: | b82358da0e9f4d8959e512a9bc06ec94 |
| SHA1: | 6938c2ac09c58c97e3f3adb1688ef91ba9c90847 |