diff --git a/README.md b/README.md index 8e4bd75..0ac6981 100644 --- a/README.md +++ b/README.md @@ -19,6 +19,14 @@ Some consider these sources as threat intelligence, opinions differ however. A certain amount of (domain- or business-specific) analysis is necessary to create true threat intelligence. + + + + + + + + - + @@ -221,6 +237,14 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea SSL Blacklist (SSLBL) is a project maintained by abuse.ch. The goal is to provide a list of "bad" SSL certificates identified by abuse.ch to be associated with malware or botnet activities. SSLBL relies on SHA1 fingerprints of malicious SSL certificates and offers various blacklists + + + +
+ Alexa Top 1 Million sites + + Probable Whitelist of the top 1 Million sites from Amazon(Alexa). +
APT Groups and Operations @@ -51,6 +59,14 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea Tracks several active botnets.
+ Cisco Umbrella + + Probable Whitelist of the top 1 million sites resolved by Cisco Umbrella (was OpenDNS). +
Critical Stack Intel @@ -59,7 +75,7 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea The free threat intelligence parsed and aggregated by Critical Stack is ready for use in any Bro production system. You can specify which feeds you trust and want to ingest.
C1fApp
+ Statvoo Top 1 Million Sites + + Probable Whitelist of the top 1 million web sites, as ranked by Statvoo. +
Strongarm, by Percipient Networks