Tool to extract indicators of compromise from security reports in PDF format https://github.com/armbues/ioc-parser $ ./ioc-parser.py -i pdf -o yara waterbug-attack-group.pdf rule waterbug_attack_group { strings: $Filename1 = "NDProxy.sys" …