Hey everyone! I’m excited to announce IOC Lens, a new plugin designed to enhance the note-taking process for cybersecurity analysis.
Install now (desktop only)
View source code on GitHub
As security professionals, we encounter indicators of compromise (IOCs) constantly in our work. Whether you’re an incident responder, threat researcher, or SOC analyst, keeping track of these indicators within lengthy notes can be challenging. IOC Lens solves this by providing a dedicated Obsidian view that automatically extracts and organizes:
- IP addresses (both public and private)
- Domain names
- SHA256 hashes
- MD5 hashes
Key features:
- Automatic IOC extraction from your notes
- One-click pivot buttons to search indicators across various security engines
- Clean, organized view of all IOCs in your current note
I built this tool to address a real need in my own security work, and I hope it proves valuable for your workflow too. I’d love to hear your feedback, suggestions, or general comments if you give it a try!