🔒🛡️ [ 10 Essential Tools for Free Threat Intelligence ] 🛡️👩💻
This home-lab is dedicated to constructing a threat intelligence system using open-source tools. Whether you're a SOC Analyst or an aspiring Blue Team professional, you'll gain hands-on experience in malware analysis, URL scanning, and command-and-control information.
🟢 Free Resources
⭐️ Understanding MITRE ATT&CK | Harnessing the Power of MITRE ATT&CK Framework:
[Link](https://lnkd.in/dX5udJ9g)
⭐️ 10 Vital Skills Every SOC Analyst Should Possess:
[Link](https://lnkd.in/dX7rVzRa)
⭐️ 7 Steps to Become a Security Analyst in Just 90 Days:
[Link](https://lnkd.in/dC-nkQfu)
1️⃣ UrlScan: Urlscan.io is a free service designed to facilitate website scanning and analysis. It automates the process of browsing and crawling websites to record activities and interactions.
🔗 [Link](https://urlscan.io/)
2️⃣ Malware Bazaar: An all-in-one malware collection and analysis database. It supports malware sample uploads and malware hunting.
🔗 [Link](https://bazaar.abuse.ch/)
3️⃣ FeodoTracker: This project by Abuse.ch aims to share intelligence on botnet Command & Control (C&C) servers associated with Dridex, Emotes (aka Heodo), TrickBot, QakBot, and BazarLoader/BazarBackdoor.
🔗 [Link](https://lnkd.in/dTTjyCqx)
4️⃣ SSL Blacklist: Browse SSL certificates and JA3 fingerprints lists, or download them to add to your deny list or threat hunting rulesets.
🔗 [Link](https://sslbl.abuse.ch/)
5️⃣ URLhaus: As an analyst, you can search the database for domains, URLs, hashes, and file types suspected to be malicious to validate your investigations.
🔗 [Link](https://urlhaus.abuse.ch/)
6️⃣ ThreatFox: Security analysts can search for, share, and export indicators of compromise associated with malware.
🔗 [Link](https://lnkd.in/dDEPgS-9)
7️⃣ PhishTool: Security analysts can uncover email IOCs, prevent breaches, and provide forensic reports.
🔗 [Link](https://www.phishtool.com/)
8️⃣ Cisco Talos Intelligence: It offers six key features - Threat Intelligence & Interdiction, Detection Research, Engineering & Development, Vulnerability Research & Discovery, Communities, and Global Outreach.
🔗 [Link](https://lnkd.in/dBv2xS8w)
9️⃣ OpenCTI: An open-source platform for organizations to manage their cyber threat intelligence knowledge and observables.
🔗 [Link](https://lnkd.in/d2PJ5pC8)
🔟 MISP: An open-source threat intelligence sharing platform.
🔗 [Link](https://lnkd.in/de6DY8G4)
💬💬 COMMENTS - Found this helpful? Share your thoughts!
#threatintelligence #socanalyst #informationsecurity 🔒🛡️
![🧑💻💥[Open-Source Security Testing-Lab]💥👩💻](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgoZnDSH3eOTHNYeN9Y9euQup-sz-T--dkxZVEMV0ayKVDspymuukKVfl7mw93d-rVPxCZxUDV1etqZqbEjuJi7TeFFiTFDFlPyVzdVJKtgbckaFuriPfclDL3NMpAzZ8qO6Eed62b72fz3eNvTOTHuXGu9VCKtXFOPb9lhKxpfb2S9Z4m17Bd3Sl_tqj4n/w72-h72-p-k-no-nu/detecting_suspicious_ip_d4e04375fa.jpg)
.jpg)
0 Comments