mirror of https://github.com/mvt-project/mvt.git
Add note in documentation about ability to invoke multiple --iocs options
This commit is contained in:
Nex
parent
817aaab258
commit
803dd2ff3a
|
|
@ -22,7 +22,11 @@ After extracting forensics data from a device, you are also able to compare it w
|
|||
mvt-ios check-iocs --iocs ~/iocs/malware.stix2 /path/to/iphone/output/
|
||||
```
|
||||
|
||||
If you're looking for indicators of compromise for a specific piece of malware or adversary, please ask investigators or anti-malware researchers who have the relevant expertise for a STIX file.
|
||||
The `--iocs` option can be invoked multiple times to let MVT import multiple STIX2 files at once. For example:
|
||||
|
||||
```bash
|
||||
mvt-ios check-backup --iocs ~/iocs/malware1.stix --iocs ~/iocs/malware2.stix2 /path/to/backup
|
||||
```
|
||||
|
||||
## Known repositories of STIX2 IOCs
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue