IOC Finder

The FireEye Indicators of Compromise (IOC) Finder is a free tool for collecting host system data and reporting the presence of IOCs. IOCs are open-standard XML documents that help incident responders capture diverse information about threats.

The IOC Finder features:

  • Collection of full data, sufficient for general IOC matching requirements
  • Usage of a portable storage device for collection from multiple hosts
  • IOC hit reporting in simple text, full HTML and full MS Word XML formats
  • Generation of reports for specific hosts or all hosts

Release notes

Current Version: IOC Finder 1.0
Release Date: October 31, 2011

  • Supported Operating Systems: Windows XP, Windows Vista, Windows 7 (32-bit and 64-bit)
  • File Size: 5,148 KB
  • Integrity Hashes:
    • ZIP
      • MD5: 6E98951D6604FF8F0E9141E393DCE57E
      • SHA-1: FF519378B262170AB62153C13E3BA6C46980893B
    • Extracted (x64)
      • MD5: 7FDE1CA2F77A0361A15875A06A7C9E17
      • SHA-1: 520B901184AF0185AC739EF9735D785D5DECE024
    • Extracted (x86)
      • MD5: 664F3886BBF1FA6EE432A112F8DB86FE
      • SHA-1: 11826AC848F45E2F9CFD2706515CDD62A2F64B3C

Download IOC Finder