Bookmarks - wr0ng.name
Tag cloud
Picture wall
Daily
Plugins
  • ► Play Videos
RSS Feed
  • RSS Feed
  • ATOM Feed
  • Daily Feed
Filters

Links per page

  • 20 links
  • 50 links
  • 100 links

Display

Filter untagged links
20 results tagged OSINT  ✕
Malpedia (Fraunhofer FKIE) https://malpedia.caad.fkie.fraunhofer.de/
Mon 06 Jul 2020 09:22:59 AM CEST
QRCode
archive.org
Malpedia is a free service offered by Fraunhofer FKIE.
Administration is lead by Daniel Plohmann and Steffen Enders.

Mission Statement
The primary goal of Malpedia is to provide a resource for rapid identification and actionable context when investigating malware. Openness to curated contributions shall ensure an accountable level of quality in order to foster meaningful and reproducible research.
Please respect the Terms of Service.

Also, please be aware that not all content on Malpedia is publicly available.
More specifically, you will need an account to access all data (malware samples, non-public YARA rules, ...).
In this regard, Malpedia is operated as an invite-only trust group.
analysis forensics malware OSINT research security wiki
Open-source Python implementation of TAXII Services | EclecticIQ https://www.eclecticiq.com/open-source/opentaxii
Wed 26 Feb 2020 05:11:44 PM CET
QRCode
archive.org
thumbnail
OpenTAXII is a robust Python implementation of TAXII Services with a rich feature set and extensible, code-level APIs.
API IOC opensource OSINT python server tools
IntelTechniques.com | OSINT & Privacy Services by Michael Bazzell | Open Source Intelligence https://inteltechniques.com/index.html
Tue 26 Feb 2019 12:23:21 PM CET
QRCode
archive.org
Welcome to the new IntelTechniques Search Tool. Use the links to the left to access all of the custom search tools and resources. This repository contains hundreds of online search utilities. Click any category to expand the selection. The first option offers an automated search tool, while the remaining options offer additional resources if needed.
intel knowledge online OSINT privacy resources tools
Docs - ANY.RUN https://app.any.run/docs?mode=FAQ
Mon 24 Sep 2018 03:39:02 PM CEST
QRCode
archive.org
Interactive online malware analysis service for dynamic and static research of most types of threats using any environments. Replaces a set of tools for research.
malware online OSINT resources security tools
💀 Sploitus | Exploit & Hacktool Search Engine https://sploitus.com/
Mon 17 Sep 2018 11:30:31 AM CEST
QRCode
archive.org
thumbnail
Sploitus is а convenient central place for identifying the newest exploits and finding attacks that exploit known vulnerabilities.
exploit knowledge OSINT repository resources security
Cyber Threat Intelligence Technical Committee https://oasis-open.github.io/cti-documentation/
Mon 10 Sep 2018 09:40:57 AM CEST
QRCode
archive.org
The OASIS Cyber Threat Intelligence (CTI) TC supports automated information sharing for cybersecurity situational awareness, real-time network defense, and sophisticated threat analysis. STIX and TAXII.
automation computing ioc OSINT protocols security
Ransomware Overview https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml
Tue 21 Aug 2018 04:39:26 PM CEST
QRCode
archive.org
Ransomware Overview
analysis malware OSINT security
MITRE ATT&CK https://attack.mitre.org/wiki/Main_Page
Mon 25 Jun 2018 01:35:42 PM CEST
QRCode
archive.org
MITRE’s Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK™) is a curated knowledge base and model for cyber adversary behavior, reflecting the various phases of an adversary’s lifecycle and the platforms they are known to target. ATT&CK is useful for understanding security risk against known adversary behavior, for planning security improvements, and verifying defenses work as expected.

Note: A MITRE Partnership Network (MPN) account is not required to view and use the ATT&CK site.
community hacking knowledge online OSINT repository resources security
VirusShare.com https://virusshare.com/
Wed 05 Jul 2017 10:19:06 AM CEST
QRCode
archive.org
VirusShare.com is a repository of malware samples to provide security researchers, incident responders, forensic analysts, and the morbidly curious access to samples of live malicious code.
analysis data knowledge malware OSINT research security share
VirusTotal Intelligence - Your malware research telescope (login required) https://virustotal.com/intelligence/search/
Tue 04 Jul 2017 12:29:22 PM CEST
QRCode
archive.org
 VirusTotal Intelligence allows you to search through our dataset in order to identify files that match certain criteria (antivirus detections, binary content, metadata, submission file names, file format structural properties, file size, etc.). We could say that it is pretty much like the "Google" of malware.
In order to ease the use of the application we have classified the search queries and modifiers into the following categories, you can combine any number of them in the same query, moreover, you can use AND, OR and NOT operators to tweak your searches.
analytics free malware online OSINT security tools useful
Free Automated Malware Analysis Service - powered by VxStream Sandbox https://www.reverse.it/
Wed 21 Jun 2017 10:02:03 AM CEST
QRCode
archive.org
This webpage is a free malware analysis service powered by Payload Security that detects and analyzes unknown threats using a unique Hybrid Analysis technology.
This free malware analysis service is running VxStream Sandbox v6.70 in the backend. Supporting PE, Office, PDF, APK files and more (e.g. EML). Maximum upload size is 100 MB.
analysis ioc knowledge malware online OSINT security tools useful
Zero Day Initiative http://www.zerodayinitiative.com/
Wed 14 Jun 2017 10:06:22 AM CEST
QRCode
archive.org
The Zero Day Initiative (ZDI), founded by TippingPoint, is a program for rewarding security researchers for responsibly disclosing vulnerabilities. Depending on who you are, here are a few links to get you started:
Researchers: Learn how we pay for your vulnerability discoveries, register for the ZDI or login.
Vendors: Read our disclosure policy or join our security partner program
Press, Curiosity Seeker: Learn more about ZDI or read answers to some frequently asked questions
Please contact us at zdi [at] trendmicro [dot] com with any questions or queries. For sensitive e-mail communications, please use our PGP key.
community internet online OSINT research security share
InfoSec Resources - IT Security Training & Resources by InfoSec Institute http://resources.infosecinstitute.com/
Tue 23 May 2017 05:05:50 PM CEST
QRCode
archive.org

About InfoSec

InfoSec Institute is the best source for high quality information security training. We have been training Information Security and IT Professionals since 1998 with a diverse lineup of relevant training courses. In the past 16 years, over 50,000 individuals have trusted InfoSec Institute for their professional development needs!
knowledge online OSINT security sharing training
AlienVault - Open Threat Exchange https://otx.alienvault.com/
Thu 18 May 2017 10:52:29 AM CEST
QRCode
archive.org
Learn about the latest online threats.
Share and collaborate in developing threat intelligence.
Protect yourself and the community against today’s latest threats.

At the heart of Open Threat Exchange is the pulse, an investigation of an online threat. Pulses describe any type of online threat including malware, fraud campaigns, and even state sponsored hacking.

Pulses are comprised of indicators of compromise (or IoCs), which describe the infrastructure of that threat – including IPs, file hashes, e-mail addresses affiliated with the threat, etc.
analysis community data ioc knowledge malware OSINT security share siem stats
Free Automated Malware Analysis Service - powered by VxStream Sandbox https://www.hybrid-analysis.com/
Tue 16 May 2017 12:45:11 PM CEST
QRCode
archive.org
This webpage is a free malware analysis service powered by Payload Security that detects and analyzes unknown threats using a unique Hybrid Analysis technology.
analysis community malware online OSINT security share tools
Malware Corpus Tracker - Malicious Download Sites - locky http://tracker.h3x.eu/
Tue 16 May 2017 10:09:48 AM CEST
QRCode
archive.org
Having this as hobby project I usually have time to focus on following only single malware threat at a time - now I have main focus on Locky download sites. If I read some interesting whitepaper, I will probably import some links/hashes to tracker database here and there, but in general I do not verirify or follow on those. This site is considered to be mainly research platform and directly using the data for blacklisting is not recommended. At least you should make sure to filter out with some reasonable whitelist. For example if some malware will be connecting to for example 'http://google.com/70.exe?1' (as Teslacrypt did to query connection) or to '//plus.google.com/u/0/115747778649102578052/about' or 'https://twitter.com/linketelin' (as PlugX samples d9af894d51ba61075c7cd329b0be52df, 02a175b81144b8fa22414e9cf281f71c did) then such links can be found in the listings of tracker although I am not saying the sites as such should be blocked.
analysis data internet malware online OSINT security sharing
PunkSPIDER https://www.punkspider.org/
Tue 16 May 2017 10:07:26 AM CEST
QRCode
archive.org
Welcome to PunkSPIDER: a global web application vulnerability search engine.
Deeper, faster, harder scans
analysis data line on OSINT security tools website
ThreatMiner.org | Data Mining for Threat Intelligence https://www.threatminer.org/
Tue 16 May 2017 09:59:30 AM CEST
QRCode
archive.org
 ThreatMiner is designed to be an analyst's first portal to visit when doing threat research and here's why.

Threat intelligence and intrusion analysts who regularly perform research into malware and network infrastructure often find the need to rely on mutliple websites that individually holds a small piece of the larger puzzle.

Furthermore, it is often the case where pivoting directly from an open source research report is unavailable and that it is sometimes difficult to remember if an indicator has alredy been reported and/or attributed. All these small but frustrating obstacles distract an analyst from what they do best: analyse.
analysis community data knowledge malware online OSINT research security sharing tools
IBM X-Force Exchange https://exchange.xforce.ibmcloud.com/new
Fri 14 Apr 2017 04:41:28 PM CEST
QRCode
archive.org
thumbnail
IBM X-Force Exchange Threat Feed Manager

Introducing threat feed manager: you can now view external sources of threat intelligence within XFE.
analysis data ibm ioc knowledge malware OSINT security siem stats
Ransomware Tracker https://ransomwaretracker.abuse.ch/
Fri 17 Feb 2017 04:05:00 PM CET
QRCode
archive.org
Ransomware Tracker tracks and monitors the status of domain names, IP addresses and URLs that are associated with Ransomware, such as Botnet C&C servers, distribution sites and payment sites.
Ransomware Tracker provides a short guideline for both home users and enterprises on how to avoid becoming a victim of Ransomware.
Ransomware Tracker offers various blocklists. These blocklists allows enterprises to block malicious traffic towards known Ransomware infrastructure at the network edge, e.g. by blocking them on the corporate firewall, web proxy or in the local DNS server.
analysis ioc knowledge list malware online opensource OSINT security tools
764 links
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service by the Shaarli community - Theme by kalvn