ZeroFOX Platform
ZeroFox Platform is an external cybersecurity solution that helps organizations identify, monitor, and respond to threats outside their traditional security perimeter. The platform consists of three main components: 1. ZeroFox Protection - Focuses on securing the external attack surface through: - External Attack Surface Management for identifying vulnerabilities in internet-facing assets - Domain Protection against domain-based cyberattacks - Brand Protection to counter frauds and impersonations - Social Media Protection for monitoring brand channels and executive profiles - Executive Protection covering both digital and physical security for corporate leaders - Dark Web Protection for visibility into data leaks and attack planning 2. ZeroFox Intelligence - Provides threat intelligence capabilities: - Intelligence Services with dedicated threat intelligence experts - Threat Intelligence Feeds that integrate with existing security tools - Intelligence Search for accessing structured data and dark web communications - Physical Security Intelligence for 24/7 monitoring of key locations - On-Demand Investigations for custom research - Dark Web Operatives who navigate criminal underground forums 3. ZeroFox Disruption - Offers remediation capabilities: - Takedowns for removing threats from social media, app stores, and fake domains - Global Disruption Network to block emerging risks - PII Removal to reduce exposure of executive and employee personal information - Technology Integrations with over 150 applications The platform is designed to address various external threats including phishing, fraud, account takeover, impersonations, and data leakage across social media, surface web, deep web, and dark web environments.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Gathers Threat Intelligence Feeds from publicly available sources and provides detailed output in CSV format.
A database of Tor exit nodes with their corresponding IP addresses and timestamps.
Tool for dataviz and statistical analysis of threat intelligence feeds, presented in cybersecurity conferences for measuring IQ of threat intelligence feeds.
Maldatabase is a threat intelligence platform providing malware datasets and threat intelligence feeds for malware data science and threat intelligence.
FireEye Mandiant SunBurst Countermeasures: freely available rules for detecting malicious files and activity
A collection of public YARA signatures for various malware families.
A reference implementation for collecting events and performing CAR analytics to detect potential adversary activity.
A threat intelligence platform that collects, analyzes, and operationalizes threat data from multiple sources to help organizations identify and respond to security threats.
PINNED
NordVPN
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.