ThreatMiner
ThreatMiner is a threat intelligence portal designed to enable analysts to research under a single interface. It aggregates data from various open source feeds and provides contextual information related to indicators of compromise (IOCs). The portal allows analysts to research, pivot, and enrich data, and also provides links to external resources for additional information. ThreatMiner relies on various open source tools and data feeds, including IOCParser, APTNotes, CIRCL, VirusTotal, Malwr.com, Hybrid-Analysis, Alienvault OTX, ipinfo, Robtex, CleanMX, VirusShare, and Sinica. It also performs native DNS enrichment via native applications. The portal aims to free analysts from data collection and provide a single interface for carrying out tasks, from reading reports to pivoting and data enrichment.
FEATURES
ALTERNATIVES
Home for rules used by Elastic Security with code for unit testing, Kibana integration, and Red Team Automation.
Threat hunting tool leveraging Windows events for identifying outliers and suspicious behavior.
RiskAnalytics Solutions offers community projects for cyber threat intelligence sharing and collaboration.
Forager is a threat intelligence tool that simplifies the retrieval, storage, and maintenance of threat data with a user-friendly interface and support for various data sources.
A collection of APT and cybercriminals campaigns with various resources and references.
Unified repository for Microsoft Sentinel and Microsoft 365 Defender containing security content, detections, queries, playbooks, and resources to secure environments and hunt for threats.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.