From cc75a1f00cd9ad385168f3374c928430d7f6c1cf Mon Sep 17 00:00:00 2001
From: Floyd Hightower <floyd.hightower27@gmail.com>
Date: Sat, 2 Mar 2019 17:26:12 -0400
Subject: [PATCH] Adding IOC Finder and Fanger

---
 README.md | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/README.md b/README.md
index 43ce176..8ad2b07 100644
--- a/README.md
+++ b/README.md
@@ -1144,6 +1144,22 @@ All kinds of tools for parsing, creating and editing Threat Intelligence. Mostly
             A free editor for Indicators of Compromise (IOCs).
         </td>
     </tr>
+    <tr>
+        <td>
+            <a href="https://github.com/fhightower/ioc-finder" target="_blank">IOC Finder</a>
+        </td>
+        <td>
+            Python library for finding indicators of compromise in text. Uses grammars rather than regexes for improved comprehensibility. As of February, 2019, it parses over 18 indicator types.
+        </td>
+    </tr>
+    <tr>
+        <td>
+            <a href="https://github.com/ioc-fang/ioc_fanger" target="_blank">IOC Fanger (and Defanger)</a>
+        </td>
+        <td>
+            Python library for fanging (`hXXp://example[.]com` => `http://example.com`) and defanging (`http://example.com` => `hXXp://example[.]com`) indicators of compromise in text.
+        </td>
+    </tr>
     <tr>
         <td>
             <a href="https://github.com/armbues/ioc_parser" target="_blank">ioc_parser</a>