SOC Multi-tool, useful browser extension for security investigations
SOC Multi-tool is a browser extension with a wide range of features and capabilities. The project is community-driven and the developer (Zachary Henard) encourages users to contribute and share better resources.
Available on the Chrome Web Store and compatible with all Chromium-based browsers such as Microsoft Edge, Chrome, Brave and Opera, SOC Mutl-tool eliminates the need for constant copying and pasting during investigations:
simply highlight the text you want to investigate, right-click, and navigate to the type of data highlighted. The extension will then open new tabs with the results of your investigation.
Some of the key features include:
- IP Reputation Lookup using VirusTotal & AbuseIPDB
- IP Info Lookup using Tor relay checker & WHOIS
- Hash Reputation Lookup using VirusTotal
- Domain Reputation Lookup using VirusTotal & AbuseIPDB
- Domain Info Lookup using Alienvault
- Living off the land binaries Lookup using the LOLBas project
- Decoding of Base64 & HEX using CyberChef
- File Extension & Filename Lookup using fileinfo.com & File.net
- MAC Address manufacturer Lookup using maclookup.com
- Parsing of UserAgent using user-agents.net
- Microsoft Error code Lookup using Microsoft’s DB
- Event ID Lookup (Windows, Sharepoint, SQL Server, Exchange, and Sysmon) using ultimatewindowssecurity.com
- Blockchain Address Lookup using blockchain.com
- CVE Info using cve.mitre.org