About IOC Manager
Overview
IOC Manager is a comprehensive platform for managing Indicators of Compromise (IOCs). It provides security teams with tools to collect, analyze, and share threat intelligence.
Features
- IOC Management: Create, edit, and organize IOCs with detailed metadata
- Multiple IOC Types: Support for IPs, domains, URLs, file hashes, and more
- Severity Levels: Classify IOCs by severity (Low, Medium, High, Critical)
- TLP Classification: Traffic Light Protocol support for information sharing
- Tagging System: Organize IOCs with custom tags
- Role-Based Access: Three user roles (Viewer, User, Admin)
- Search & Filter: Powerful search and filtering capabilities
- Enrichment: External threat intelligence integration
User Roles
| Role | Permissions |
|---|---|
| Viewer | Read-only access to IOCs |
| User | Create and edit own IOCs |
| Admin | Full access including user management |
Technology Stack
- Backend: Python Flask
- Database: SQLAlchemy ORM
- Frontend: Bootstrap 5
- Authentication: Flask-Login
Author
IOC Manager is developed and maintained by Julien Mousqueton.
This project is open source and available on GitHub: github.com/JMousqueton/IoCManager
Licensed under the MIT License