IOC Finder

The FireEye Indicators of Compromise (IOC) Finder is a free tool for collecting host system data and reporting the presence of IOCs. IOCs are open-standard XML documents that help incident responders capture diverse information about threats.

The IOC Finder features:

• Collection of full data, sufficient for general IOC matching requirements
• Usage of a portable storage device for collection from multiple hosts
• IOC hit reporting in simple text, full HTML and full MS Word XML formats
• Generation of reports for specific hosts or all hosts

Release notes

Current Version: IOC Finder 1.0
Release Date: October 31, 2011

• Supported Operating Systems: Windows XP, Windows Vista, Windows 7 (32-bit and 64-bit)
• File Size: 5,148 KB
• Integrity Hashes:
  • ZIP
    • MD5: 6E98951D6604FF8F0E9141E393DCE57E
    • SHA-1: FF519378B262170AB62153C13E3BA6C46980893B
  • Extracted (x64)
    • MD5: 7FDE1CA2F77A0361A15875A06A7C9E17
    • SHA-1: 520B901184AF0185AC739EF9735D785D5DECE024
  • Extracted (x86)
    • MD5: 664F3886BBF1FA6EE432A112F8DB86FE
    • SHA-1: 11826AC848F45E2F9CFD2706515CDD62A2F64B3C