SSLBL - SSL Blacklist
The SSL Blacklist (SSLBL) is a project of abuse.ch that detects malicious SSL connections by identifying and blacklisting SSL certificates used by botnet C&C servers. It also identifies JA3 fingerprints to detect and block malware botnet C&C communication on the TCP layer. The platform provides a list of malicious SSL certificates, JA3 fingerprints, and statistics on botnet C&C operations that leverage SSL to encrypt botnet C&C traffic. The platform offers several features, including: * Identifying botnet command and control (C&C) infrastructure * Detecting botnet C&C communication * Providing insights into botnet C&C operations that leverage SSL to encrypt botnet C&C traffic
FEATURES
ALTERNATIVES
A threat hunting tool for Windows event logs to detect APT movements and decrease the time to uncover suspicious activity.
A repository of Yara signatures under the GNU-GPLv2 license for the cybersecurity community.
A framework for managing cyber threat intelligence in structured formats.
Search engine for Windows executable files and hashes, providing insights into file prevalence, behavior, and security information.
A sophisticated npm attack attributed to North Korean threat actors, targeting technology firms and their employees.
A collection of Yara rules for the Burp Yara-Scanner extension to identify malicious software on websites.
Repository of automatically generated YARA rules from Malpedia's YARA-Signator with detailed statistics.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.