OpenIOC 1.0 Editor
The FireEye OpenIOC 1.0 Editor is a free tool that provides an interface for managing data and manipulating the logical structures of v1.0 OpenIOCs. IOCs are XML documents that help incident responders capture diverse information about threats, including attributes of malicious files, characteristics of registry changes and artifacts in memory. The IOC Editor includes:
- Manipulation of the logical structures that define the IOC
- Application of meta-information to IOCs, including detailed descriptions or arbitrary labels
- Conversion of IOCs into XPath filters
- Management of lists of “terms” used within IOCs
NOTE ON APP VERSIONS: We have two versions of OpenIOC Editor available on the FireEye Market. This version, 2.2 is the OpenIOC 1.0 editor. It is still used in some tools, but it is not compatible with the newer OpenIOC 1.1 editor, version, 3.2, which is the current version of used in our Endpoint Security (formerly known as HX) product. We have both versions available depending on your use case.
The Terms of Use for this software are subject to the licensing and terms outlined in the freeware app.
Support
| Developer: | FireEye |
| Contact: | Community |
| Resources: | Release Notes |
| User Guide | |
| FireEye.com Free Software Downloads | |
| FireEye Blog |
App Info
| Version: | 2.2 |
| Platform: | Windows |
| Requirements: | Windows XP, Windows Vista, Windows 7 (32-bit and 64-bit), Windows 8.1 (32 and 64 bit), Windows 10 (32 and 64 bit) |
| Size: | 1.73 MB |
| MD5: | 40075157b7a65bba45122ced2ff33aae |
| SHA1: | aff95f0fa83c7b07cbe4130bbef92bd11a82b9a0 |