SSLBL - SSL Blacklist
The SSL Blacklist (SSLBL) is a project of abuse.ch that detects malicious SSL connections by identifying and blacklisting SSL certificates used by botnet C&C servers. It also identifies JA3 fingerprints to detect and block malware botnet C&C communication on the TCP layer. The platform provides a list of malicious SSL certificates, JA3 fingerprints, and statistics on botnet C&C operations that leverage SSL to encrypt botnet C&C traffic. The platform offers several features, including: * Identifying botnet command and control (C&C) infrastructure * Detecting botnet C&C communication * Providing insights into botnet C&C operations that leverage SSL to encrypt botnet C&C traffic
FEATURES
ALTERNATIVES
An Open Source solution for management of Threat Intelligence at scale, integrating multiple analyzers and malware analysis tools.
An informational repo about hunting for adversaries in your IT environment.
Pulsedive is a threat intelligence platform that provides frictionless threat intelligence for growing teams, offering features such as indicator enrichment, threat research, and API integration.
Real-time, container-based file scanning system for threat hunting and incident response.
A collection of YARA rules for research and hunting purposes.
The FASTEST Way to Consume Threat Intelligence and make it actionable.
Signature-based YARA rules for detecting and preventing threats within Linux, Windows, and macOS systems.
Lists of sources and utilities to hunt, detect, and prevent evildoers.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.