IOCs reputation

  • Offensive-OSINT-Tools: https://github.com/wddadk/Offensive-OSINT-Tools
  • Awesome threat intelligence: https://github.com/hslatman/awesome-threat-intelligence

    • IP address reputation

    Abuseipdbhttps://www.abuseipdb.com/
    Abuseathttps://www.abuseat.org/
    Riskiq (paid)https://www.riskiq.com
    Spurhttps://spur.us/
    Talos Intelligencehttps://talosintelligence.com/
    VirusTotalhttps://www.virustotal.com/

    URL reputation

    Sucurihttps://sitecheck.sucuri.net/
    Urlhaushttps://urlhaus.abuse.ch/
    Urlscanhttps://urlscan.io/
    Urlscorehttps://urlscore.ai/
    VirusTotalhttps://www.virustotal.com/

    Sandbox

    AnyRunhttps://any.run/
    Browserlinghttps://www.browserling.com/
    Capehttps://capesandbox.com/
    Hybridhttps://www.hybrid-analysis.com/
    Pandorahttps://pandora.circl.lu/
    VirusTotalhttps://www.virustotal.com/
    WDSIhttps://osoft.com

    Dns history

    Dnshistoryhttps://dnshistory.org/
    Securitytrailshttps://securitytrails.com/
    TI.defender.microsofthttps://ti.defender.microsoft.com/
    Viewdnshttps://viewdns.info/

    Certifications

    Crt.shhttps://crt.sh/
    Web Checkhttps://web-check.as93.net/

    Recon and search engine

    BGP toolshttps://bgp.tools/
    Censyshttps://search.censys.io/
    Chaos Projectdiscoveryhttps://chaos.projectdiscovery.io
    Columbus Projecthttps://columbus.elmasy.com/
    Fofahttps://en.fofa.info/asn="1234" && port="22" && banner="OpenSSH"
    Netlas.iohttps://netlas.io(tag.openssh.version:(>=8.5 AND <9.8) OR tag.openssh.version:(<4.4)) AND geo.country:("DE")
    Opendata Rapid7https://opendata.rapid7.com/
    Recon.devhttps://recon.dev/
    Shodanhttps://www.shodan.io/
    Synapsinthttps://synapsint.com
    Subdomainfinderhttps://subdomainfinder.c99.nl

    last udpate: Thu Jul 18 21:40:51 CEST 2024