AddonCyber is a simple open-source browser extension to assist SOC teams, cybersecurity researchers and analysts in day-to-day threat inteligence and security operations.
Using a browser, highlight the indicator: IP, URL, domain, file hash, CVE number, base64 encoded text, and opt to search various threat intel services for the IOC, search for a CVE, decode base64, etc
Made by alterSec under Apache license. Any feedback and PR welcomed!
Current extension options:
- Talos Reputation
- Virus Total - requires API key
- OTX
- Shodan
- Microsoft TI
- CIRCL CVE
- CyberChef
- Twitter;
NOTE: Some options may require authenticated access. Services that require an API key (like VT) use the PHP script in the extra folder hosted by alterSec. Users should host their own instance on public web server, configured with your specific VT API key.
If you just want to use the addon:
For devs, clone the github repo to a local folder and Sideload extension in Edge
For Firefox direct installation you can go to:
about:debugging | Temporary Extensions | Load Temporary Add-on
and select the manifest.json file
- Add extension to stores
- Integration with MISP instance, search IOC, add indicator to an event
- In-context tooltip option, rather than open in a new tab
- Better code
- Roadmap of useful services and ideas
- All tasks are complete 🎉
- Icon: https://icon-sets.iconify.design/tabler/virus-search/
- Inspiration: https://github.com/401trg/warriormonk.git
© alterSec Ltd