Mirai Tracker
Mirai Tracker is a cybersecurity tool that detects and logs SYN packets with a specific signature generated by the Mirai malware. The tracker analyzes SYN packets with a TTL value of 64, a random TCP window size, and a TCP sequence number corresponding to the integer value of the IP destination. The tool is based in Europe and provides real-time information on Mirai-based campaigns. It also offers a solution using SCAPY to detect these packets. The tracker includes additional features such as IP list, SQLite DB, and maps to help correlate Mirai variant recognition. It is an essential resource for cybersecurity professionals and researchers tracking Mirai-related activities. The tool is regularly updated to track the evolution of Mirai-based campaigns, providing valuable insights into the malware's behavior and helping to improve detection and mitigation strategies.
FEATURES
ALTERNATIVES
Cisco Umbrella is a cloud security platform that offers protection against threats on the internet by blocking malicious activity.
Utilize Jupyter Notebooks to enhance threat hunting capabilities by focusing on different threat categories or stages.
The Ransomware Tool Matrix is a repository that lists and categorizes tools used by ransomware gangs, aiding in threat hunting, incident response, and adversary emulation.
A Linux distribution designed for threat emulation and threat hunting, integrating attacker and defender tools for identifying threats in your environment.
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol, with a focus on incident handling automation and threat intelligence processing.
A collection of public YARA signatures for various malware families.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.