Tool Dump
This is an ever-growing list of Threat Intel tool dumps. Some may have hyperlinks to other pages.
Last updated
This is an ever-growing list of Threat Intel tool dumps. Some may have hyperlinks to other pages.
Last updated
This is a free tool made to help scan and analyze websites. Basic URL based informations are provided through this. The following useful information may be given:
Summary: Gives basic details about the website, like its IP address, when it was registered, its history, and a picture of what it looks like.;
HTTP: Tells about the connections the scanner makes to the website, including what data it gets and what kinds of files it finds.;
Redirects: Shows if the website sends you to another page, either by itself or because of something on your computer.;
Links: Lists all the links that take you away from the main page of the website.;
Behavior: Tells about the special codes and cookies the website uses. This can help figure out what tools were used to make the website.;
Indicators: Lists all the other websites, IP addresses, and codes linked to this website. This doesn't mean the website is bad, just that it's connected to other things.
Abuse.ch is a research initiative based at the Institute for Cybersecurity and Engineering at Bern University of Applied Sciences in Switzerland. It is dedicated to detecting and monitoring malware and botnets using various operational platforms created as part of the project.
Malware Bazaar: A resource for sharing malware samples. All in one malware collection and analysis database. Features -> Malware Samples Upload, Malware Hunting. https://bazaar.abuse.ch
Feodo Tracker: In this project, Abuse.ch aims to share information about botnet Command & Control (C&C) servers linked to Dridex, Emotes (also known as Heodo), TrickBot, QakBot, and BazarLoader/BazarBackdoor. They do this by giving a list of these servers to security experts, who can then check if any suspicious IP addresses they find are related. They also offer different lists of IP addresses and indicators of compromise (IOC), along with tips on how to stop botnet infections. https://feodotracker.abuse.ch
SSL Blacklist: A resource for collecting and providing a blocklist for malicious SSL certificates and JA3/JA3s fingerprints.
URL Haus: A resource for sharing malware distribution sites.
Threat Fox: A resource for sharing indicators of compromise (IOCs).