Sentinel ATT&CK
0 (0)
A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel
ThreatMiner is a threat intelligence portal designed to enable analysts to research under a single interface. It aggregates data from various open source feeds and provides contextual information related to indicators of compromise (IOCs). The portal allows analysts to research, pivot, and enrich data, and also provides links to external resources for additional information. ThreatMiner relies on various open source tools and data feeds, including IOCParser, APTNotes, CIRCL, VirusTotal, Malwr.com, Hybrid-Analysis, Alienvault OTX, ipinfo, Robtex, CleanMX, VirusShare, and Sinica. It also performs native DNS enrichment via native applications. The portal aims to free analysts from data collection and provide a single interface for carrying out tasks, from reading reports to pivoting and data enrichment.
A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel
A comprehensive list of IP addresses for cybersecurity purposes, including threat intelligence, incident response, and security research.
Signature-based YARA rules for detecting and preventing threats within Linux, Windows, and macOS systems.
Public access to Indicators of Compromise (IoCs) and other data for readers of Security Scorecard's technical blog posts and reports.
MaxMind provides accurate IP geolocation and online fraud detection solutions to create safer digital experiences.
A free software that calculates the security ranking of Internet Service Providers to detect malicious activities.