Nervi0z

Nervi0z / iocx

Public

IOC triage at terminal speed — pip install iocx

blue-team-tool cli ioc python security
11
1
100% credibility
Found Mar 17, 2026 at 11 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

iocx is a tool for quickly checking suspicious IP addresses, domains, file hashes, and URLs against various threat intelligence sources to generate summarized reports.

How It Works

1
👂 Hear about iocx

A security coworker shares iocx, a quick way to check suspicious web addresses and files for dangers.

2
💻 Add it to your computer

You grab it with one simple action and it's ready to use right away.

3
🔗 Link helpful services

You connect free accounts from trusted security sites to unlock extra details, or skip for basic checks.

4
Pick your check
🔍
Quick single check

Enter one web address or code snippet to see its risks fast.

📋
Batch scan list

Feed in a file of addresses to check them all at once.

5
📊 See the results glow

Watch as it pulls info from many places, colors risks red for danger or green for safe, with handy links.

6
💾 Save your report

It creates a polished summary page or list you can attach to emails or notes instantly.

Investigation done!

You've got proof of threats or clears, speeding up your work and keeping records tidy.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 11 to 11 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is iocx?

iocx is a Python CLI for chrysalis ioc triage, querying IPs, domains, hashes, and URLs across sources like VirusTotal, AbuseIPDB, Shodan, MalwareBazaar, URLhaus, and ip-api.com. It refangs defanged IOCs (malo[.]com, hxxps://evil[.]ru), extracts them from files via `iocx scan hosts.txt`, and generates risk-colored HTML reports with direct OSINT links—perfect for github ioc scanner or ioc extractor github workflows. Bonus: `iocx decode` auto-handles base64, hex, JWT, and ROT13.

Why is it gaining traction?

Zero-config pip install iocx gets you terminal results instantly using public github ioc feed and DNS, with optional free API keys unlocking deeper scans. Concurrent queries deliver sub-second responses per IOC, plus JSON output for piping and polished reports attachable to tickets—no more manual tab-switching. Developers searching ioc finder github or ioc parser github love the battle-tested defanging and extraction from messy logs.

Who should use this?

SOC Tier 1 analysts triaging alerts from github ioc list, blue teamers building ioc database github pipelines, or threat hunters parsing notepad ++ ioc github dumps and pegasus ioc github reports. Ideal for shift workers needing quick ioc triage without bloated GUIs—pair with existing tools for install-and-forget speed.

Verdict

Solid pickup for blue teams at v0.1.0: pip install iocx and triage smarter today. With 11 stars and 1.0% credibility score, it's raw beta from one SOC analyst—docs shine but add tests before prod reliance.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.