A daily updated summary of the most frequent types of security advisories currently being reported from different sources. For more information, please check out the documentation here. Sources: US-CERT - United States Computer Emergency and Readiness Team. MA-CERT - Moroccan Computer Emergency Response Team. CERT-FR - The French national government Computer Security Incident Response Team. IBM X-Force Exchange - A cloud-based threat intelligence platform that allows to consume, share and act on threat intelligence. ZeroDayInitiative - An international software vulnerability initiative that was started in 2005 by TippingPoint. OBS Vigilance - An initiative created by OBS (Orange Business Services) since 1999 to watch public vulnerabilities and then offer security fixes, a database and tools to remediate them. VulDB - Number one vulnerability database documenting and explaining security vulnerabilities, threats, and exploits since 1970. HK-CERT - Hong Kong Computer Emergency Response Team Coordination Centre. CA-CCS - Canadian Centre for Cyber Security. EU-CERT - European Union Agency for Cybersecurity. Suggest a source by one of the above.
FEATURES
ALTERNATIVES
Scan files or process memory for Cobalt Strike beacons and parse their configuration.
A community-driven list of sample security analytics for auditing cloud usage and detecting threats in Google Cloud.
A tracker that detects and logs SYN packets with a specific signature generated by the Mirai malware, providing real-time information on Mirai-based campaigns.
YARA signature and IOC database for LOKI and THOR Lite scanners with high quality rules and IOCs.
A comprehensive Threat Intelligence Program Management Solution for managing the entire CTI lifecycle.
Dorothy is a tool to test monitoring and detection capabilities for Okta environments, with modules mapped to MITRE ATT&CK® tactics.
A tool for fetching and visualizing cyber threat intelligence data with Elasticsearch and Kibana integration.
Cortex is a tool for analyzing observables at scale and automating threat intelligence, digital forensics, and incident response.
PINNED

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.