All of my threat intel recommendations for aspiring Information Security Analyst. This section contains information about evidence at analyst's disposal IP
, domain
, email
, hash
, files
.
- ๐ป Domain & IP
- ๐ Files, Hash & Sandbox
- ๐ Phishing
- ๐ค UserAgent
- โ๏ธ Miner
- ๐น Encoder/Decoder
- ๐ Google Dorks
- ๐ OSINT
- ๐ Dumps
- ๐ Vulnerabilities
- ๐ URL Sshorteners
- ๐ List of Default Passwords
- ๐งฐ Forensic
- ๐ Cheatsheet
- โ๏ธ Effective writing
- ๐ฉโ๐ CTF/Learning
Threat intel resource used by analysts on a daily basis.
- AbuseIPDB
- Talos Intelligence
- VirtusTotal
- URL2PNG - does a screenshot of the website
- URLScan
- AlienVault
- RiskIQ
- ThreatCrowd
- IPVoid
- TI Search Engine
- Shodan - IoT search
- Gray Hat Warfare - public buckets
- GrayNoise
- DNSdumpster
- URLVoid
- Polyswarm
- Forecpoint CSI (URL/IP)
- Domain Dossier
- URLhaus
- Browse Botnet C&Cs
- Etherscan - Blockchain Explorer
- ReversDNS
- DNSRecord
- VirtusTotal
- Metadefender Cloud - OPSWAT
- Any.Run - sandbox
- VirSCAN.org
- TotalHash
- Malwares
- Intezer analyze - All malware analysis tools under one platform
- Cuckoo - sandbox
- Joe Sandbox
- Analyzing Malicious Documents Cheat sheet
- 30 Online Malware Analysis Sandboxes / Static Analyzers
- EmailRep
- Verify-Email
- Hunter.io
- PublicEmailRecords
- EmailBlackist
- PhishTank
- Spy Dialer
- CheckPhish
- Reverse Email Lookup
- Confense webinar "Remote Work Phishing Threats and How to Stop Them"
- Have I Been Pwned
- Have I Been Sold
- CyberChef - encryption, encoding, compression and data analysis
- BASE64 - Decode from Base64 format or encode into it with various advanced options.
- Hexed - analyse and edit binary files everywhere
- Uncoder - Universal sigma rule converter for various siem, edr, and ntdr formats
- ShellCheck - finds bugs in your shell scripts.
- Explain shell code - write down a command-line to see the help text that matches each argument
- Dan's Tools - Base64
- Code Decode/Encoder
- Script converter - These tools include several formatters, validators, code minifiers, string escapers, encoders and decoders, message digesters, web resources and more
- Hash Analyzer
- Hashes examples
- Filecrypt - The simple, secure file-hosting application
- OSINT Framework
- Start.me The Ultimate OSINT collection
- OSINT ME
- Start.me OSINT
- Start.me OSINT Tools
- Start.me Open Source Intelligence (OSINT)
- OSINT collection github
- Explot Database
- DSNTwits - TypoSquatting
- IntelTechniques by Michael Bazzell
- Dasmalwerk - malware samples
- Malware Traffic Analysis - traffic analysis exercises
- bit.ly - You can verify the destination of any Bitly link by adding a plus symbol ("+") at the end of the URL (e.g. bitly.is/meta+)
- s.id
- smarturl.it
- tiny.pl
- tinyurl.com
- x.co