SSLBL - SSL Blacklist Logo

SSLBL - SSL Blacklist

Visit Website

The SSL Blacklist (SSLBL) is a project of abuse.ch that detects malicious SSL connections by identifying and blacklisting SSL certificates used by botnet C&C servers. It also identifies JA3 fingerprints to detect and block malware botnet C&C communication on the TCP layer. The platform provides a list of malicious SSL certificates, JA3 fingerprints, and statistics on botnet C&C operations that leverage SSL to encrypt botnet C&C traffic. The platform offers several features, including: * Identifying botnet command and control (C&C) infrastructure * Detecting botnet C&C communication * Providing insights into botnet C&C operations that leverage SSL to encrypt botnet C&C traffic

FEATURES

ALTERNATIVES

Deception based detection techniques with MITRE ATT&CK mapping and Honey Resources.

Open-source initiative providing malicious and benign datasets to expedite data analysis and threat research.

Globally-accessible knowledge base of adversary tactics and techniques for cybersecurity.

A container of PCAP captures mapped to the relevant attack tactic

Gathers Threat Intelligence Feeds from publicly available sources and provides detailed output in CSV format.

Bearded Avenger is a cybersecurity tool with various integrations and deployment instructions available.

Analyze suspicious files, domains, IPs, and URLs to detect malware and other breaches, and share results with the security community.

A cybersecurity tool with online demo, mailing list, and multiple installation methods.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved