OSINT or Open Source Intelligence is an important pillar when it comes to protecting your organization from the latest Cyber Security Threats and Threat Vectors. Here is a list of useful resources that we have found useful.
- SANS Internet Storm Center “StormCast” – A near-daily podcast hosted by the SANS Internet Storm Center – https://isc.sans.edu/podcast.html
- Packet Storm – Aggregation of Exploits, Advisories, Tools, Whitepapers, and more – https://packetstormsecurity.com/
- Cisco Talos Intelligence Group – Cisco’s OSINT portal, to put it in a few words. Features a thorough IP reputation and owner lookup tool – https://talosintelligence.com/
- VirusTotal – Malware analysis of Files, URLs, IPs, and much more – https://www.virustotal.com/
- IBM X-Force Exchange – IBM’s OSINT portal – https://exchange.xforce.ibmcloud.com/
- Unit 42 – Palo Alto’s OSINT Portal – https://unit42.paloaltonetworks.com/
- Hybrid-Analysis – Free Automated Malware Analysis – https://www.hybrid-analysis.com/
- Slashdot – “News for nerds, stuff that matters.” Decent catch-all for major news, usually non-technical but still related to the culture of cyber security. – https://slashdot.org/
- CyNetDef Tor Exit Node Tracker – Pulls an up-to-date list of Tor Exit Node IP Addresses each time the page is loaded – https://torexit.cynetdef.org/
- Rex Swain’s HTTP Viewer – Shows HTTP header info your browser normally wouldn’t display – http://rexswain.com/httpview.html
- urlscan.io – URL analysis sandbox – https://urlscan.io/
- URLVoid – Website reputation checker – https://www.urlvoid.com/
- PhishTank – A free community site where anyone can submit, verify, track and share phishing data. – https://www.phishtank.com/
- DNSDumpster – DNS enumeration tool – https://dnsdumpster.com
- Dig Web Interface – Web interface variant of the ever-powerful dig command with the ability to query globally distributed DNS servers – https://www.digwebinterface.com/
- APT Groups and Operations – A large and comprehensive list of APTs and their operations maintained in a Google Spreadsheet by a team of Cyber Intelligence Researchers – https://apt.threattracking.com