Web Classification and Reputation | IP Reputation | Real-Time Anti-Phishing | Streaming Malware Detection | File Reputation | Mobile Security SDK | Malware analysis tools | Online Scanners and Sandboxes...
- VirusTotal | Analyze suspicious files and URLs to detect types of malware, automatically share them with the security community.
- IBM X-Force Exchange | Threat intelligence sharing platform enabling research on security threats, aggregation of intelligence, and collaboration with peers.
- AbuseIPDB | IP address abuse reports - Making the Internet safer, one IP at a time
- Cisco Talos Intelligence Group | Comprehensive Threat Intelligence | The Talos Security Intelligence and Research Group (Talos) is made up of leading threat researchers supported by sophisticated systems to create threat intelligence for Cisco products that detects, analyzes and protects against both known and emerging threats. Talos maintains the official rule sets of Snort.org, ClamAV, SenderBase.org and SpamCop.
- Threat Crowd | Threatcrowd.org Open Source Threat Intelligence is powered by AlienVault®.
- FortiGuard Labs | Global Threat Research and response
- URL Query | urlquery.net is a service for detecting and analyzing web-based malware. It provides detailed information about the activities a browser does while visiting a site and presents the information for further analysis.
- DroneBL | This is a synopsis of recent activity in DroneBL. DroneBL is a realtime monitor of abusable IPs, which has the goal of stopping abuse of infected machines.
- CBL - Composite Blocking List | The CBL takes its source data from very large mail server (SMTP) installations. Some of these are pure spamtrap servers, and some are not.
- Hybrid analysis | This is a free malware analysis service for the community that detects and analyzes unknown threats using a unique Hybrid Analysis technology.
- MX Toolbox | This test will list MX records for a domain in priority order. The MX lookup is done directly against the domain's authoritative name server, so changes to MX Records should show up instantly.
- SpeedGuide.net | SG TCP/IP Analyzer | SG TCP Optimizer | SG Security Scanner | SG Speed Test | SG IP Locator | SG Network Tools | SG Bits/Bytes Conversion Calculator | SG RWIN/BDP Calculator | SG DSL Speed Calculator | SG WLAN Key Generator | SG Hash Generator
- MalShare | A free Malware repository providing researchers access to samples, malicous feeds, and Yara results.
- URLScan | A sandbox for the web
- URLVoid | Website Reputation Checker | This service helps you detect potentially malicious websites.
- DNSlytics | The ultimate online investigation tool
- httpstatus | Easily check status codes, response headers, and redirect chains.
- anlyz - REM | Malware analysis tool
- SpamCop.net | Determines the origin of unwanted email and reports it to the relevant Internet service providers. By reporting spam, you have a positive impact on the problem. Reporting unsolicited email also helps feed spam filtering systems, including, but not limited to, SpamCop's own service.
- Ransomware Tracker | Ransomware Tracker tracks and monitors the status of domain names, IP addresses and URLs that are associated with Ransomware, such as Botnet C&C servers, distribution sites and payment sites. tool
- Joe Sandbox | Detects and analyzes potential malicious files and URLs on Windows, Android, Mac OS, Linux, and iOS for suspicious activities. It performs deep malware analysis and generates comprehensive and detailed analysis reports.
- BrightCloud Tools | Web Classification and Reputation | IP Reputation | Real-Time Anti-Phishing | Streaming Malware Detection | File Reputation | Mobile Security SDK
- docs.microsoft.com | Windows Event ID 4625
- www.ultimatewindowssecurity.com | Windows Security Log Event ID 4625
- docs.oracle.com | Oracle® Database Security Guide
- Checkpoint – Internal ports | Explanations
- ThreadCloud | Intelligence
- Kapersky | CyberThreat Real-Time Map
- FireEye | Cyber Threat Map
- Fortinet | Cyber Threat Map
- Bitdefender | Cyber Threat Real-Time Map
- Threatbutt | Live Botnet Threats Worldwide
- Deteque | Cyber Threat Real-Time Map
- Deteque | Cyber Threat Real-Time Map
- INTRODUCTION TO DNS DATA EXFILTRATION
- Awesome Malware Analysis | Github