🔒🛡️ [ 10 Essential Tools for Free Threat Intelligence ] 🛡️👩‍💻

 🔒🛡️ [ 10 Essential Tools for Free Threat Intelligence ] 🛡️👩‍💻

This home-lab is dedicated to constructing a threat intelligence system using open-source tools. Whether you're a SOC Analyst or an aspiring Blue Team professional, you'll gain hands-on experience in malware analysis, URL scanning, and command-and-control information.

🟢 Free Resources

⭐️ Understanding MITRE ATT&CK | Harnessing the Power of MITRE ATT&CK Framework:

[Link](https://lnkd.in/dX5udJ9g)

⭐️ 10 Vital Skills Every SOC Analyst Should Possess:

[Link](https://lnkd.in/dX7rVzRa)

⭐️ 7 Steps to Become a Security Analyst in Just 90 Days:

[Link](https://lnkd.in/dC-nkQfu)

1️⃣ UrlScan: Urlscan.io is a free service designed to facilitate website scanning and analysis. It automates the process of browsing and crawling websites to record activities and interactions.

🔗 [Link](https://urlscan.io/)

2️⃣ Malware Bazaar: An all-in-one malware collection and analysis database. It supports malware sample uploads and malware hunting.

🔗 [Link](https://bazaar.abuse.ch/)

3️⃣ FeodoTracker: This project by Abuse.ch aims to share intelligence on botnet Command & Control (C&C) servers associated with Dridex, Emotes (aka Heodo), TrickBot, QakBot, and BazarLoader/BazarBackdoor.

🔗 [Link](https://lnkd.in/dTTjyCqx)

4️⃣ SSL Blacklist: Browse SSL certificates and JA3 fingerprints lists, or download them to add to your deny list or threat hunting rulesets.

🔗 [Link](https://sslbl.abuse.ch/)

5️⃣ URLhaus: As an analyst, you can search the database for domains, URLs, hashes, and file types suspected to be malicious to validate your investigations.

🔗 [Link](https://urlhaus.abuse.ch/)

6️⃣ ThreatFox: Security analysts can search for, share, and export indicators of compromise associated with malware.

🔗 [Link](https://lnkd.in/dDEPgS-9)

7️⃣ PhishTool: Security analysts can uncover email IOCs, prevent breaches, and provide forensic reports.

🔗 [Link](https://www.phishtool.com/)

8️⃣ Cisco Talos Intelligence: It offers six key features - Threat Intelligence & Interdiction, Detection Research, Engineering & Development, Vulnerability Research & Discovery, Communities, and Global Outreach.

🔗 [Link](https://lnkd.in/dBv2xS8w)

9️⃣ OpenCTI: An open-source platform for organizations to manage their cyber threat intelligence knowledge and observables.

🔗 [Link](https://lnkd.in/d2PJ5pC8)

🔟 MISP: An open-source threat intelligence sharing platform.

🔗 [Link](https://lnkd.in/de6DY8G4)

💬💬 COMMENTS - Found this helpful? Share your thoughts!

#threatintelligence #socanalyst #informationsecurity 🔒🛡️