The IOC Lens plugin for Obsidian is a powerful tool designed for cybersecurity professionals and incident responders. It simplifies the process of extracting and analyzing Indicators of Compromise (IOCs) from your notes. By recognizing key elements such as IP addresses, domain names, and file hashes, the plugin automatically highlights them and provides quick access to security-focused resources like AbuseIPDB, Censys, Shodan, and more. This integration helps streamline the investigation process, allowing users to pivot directly to relevant online tools for deeper analysis. With customizable settings to choose which IOCs to extract and which resources to link, IOC Lens enhances your workflow and keeps you focused on actionable security data.

The Virus Total Enrichment plugin integrates VirusTotal’s threat intelligence capabilities into Obsidian, allowing users to enrich their notes with detailed properties of files, URLs, IP addresses, or domains. By leveraging the VirusTotal API, users can enhance their notes with metadata like hashes, file types, and creation dates. This information can then be queried dynamically using Obsidian’s Dataview plugin, enabling advanced analysis and organization of enriched data. The plugin supports customizable fields and ensures secure integration with an API key, making it ideal for cybersecurity professionals and researchers looking to combine threat intelligence with note-taking.