SOC Toolkit

A browser extension for security analysts to streamline and organize investigations

SOC Toolkit is a free, open-source browser extension designed to streamline security investigations by eliminating the need for constant copying and pasting during incident analysis. Compatible with Chromium-based browsers (Chrome, Edge, Brave, Opera) and Firefox. ✨ Features Fast IOC Lookups - IP Reputation via VirusTotal, AbuseIPDB, GreyNoise, IBM X-Force, Talos, and more - WHOIS for IP/Domain - Hash Analysis (MD5, SHA1, SHA256) across multiple sources - Domain Intelligence via AlienVault OTX, VirusTotal, and others - Blockchain Address Verification - MAC Address Manufacturer Identification - User-Agent Parsing - CVE Information Lookup - Microsoft Error Code Reference - Windows Event ID Lookup (Windows, SharePoint, SQL Server, Exchange, Sysmon) - Windows Binary Verification via Winbindex - LOLBins Check (Living Off The Land Binaries) - Data Decoding via CyberChef (Base64, HEX, etc) Advanced Investigation Tools - Query History: Store previous searches for quick reference - Investigation Cases: Organize queries by case to maintain context - Report Export: Export results in various formats (CSV, JSON) - Custom Interface: Personalize with light/dark theme - Text Highlighting: Emphasize specific terms on web pages with type-specific styling - Integrated Notes: Attach notes to specific IOCs - IOC Correlation: Visualize relationships between different indicators - Timeline Feature: Track investigation activities chronologically 🔄 Latest Features - Modern UI: Clean, responsive design with gradient backgrounds and improved card layouts - Enhanced Text Highlighting: Type-specific styling and improved tooltips - Optimized Performance: Faster loading and reduced memory consumption - Improved Dark Theme: Better contrast and readability - Advanced IOC Pattern Recognition: Better detection and visualization - Streamlined Workflow: Organized by investigation cases