ch0ic3/awesome-threat-intelligence
1
0
Fork 0
mirror of https://github.com/hslatman/awesome-threat-intelligence.git synced 2025-02-07 15:32:10 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #5 from hslatman/hs_20160128

Browse Source 
PhishTank, SSL Blacklist and HailATAXII.com added
This commit is contained in:
Herman Slatman 2016-01-28 18:23:26 +01:00
commit 5aa55d927a
1 changed files with 25 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
README.md
View File

@ -51,6 +51,14 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea
A collection of Snort and Suricata <i>rules</i> files that can be used for alerting or blocking. A collection of Snort and Suricata <i>rules</i> files that can be used for alerting or blocking.
</td> </td>
</tr> </tr>
<tr>
<td>
<a href="http://hailataxii.com/" target="_blank">Hail a TAXII</a>
</td>
<td>
Hail a TAXII.com is a repository of Open Source Cyber Threat Intellegence feeds in STIX format. They offer several feeds, including some that are listed here already in a different format, like the Emerging Threats rules and PhishTank feeds.
</td>
</tr>
<tr> <tr>
<td> <td>
<a href="https://www.iblocklist.com/lists" target="_blank">I-Blocklist</a> <a href="https://www.iblocklist.com/lists" target="_blank">I-Blocklist</a>
@ -75,6 +83,22 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea
OpenPhish receives URLs from multiple streams and analyzes them using its proprietary phishing detection algorithms. There are free and commercial offerings available. OpenPhish receives URLs from multiple streams and analyzes them using its proprietary phishing detection algorithms. There are free and commercial offerings available.
</td> </td>
</tr> </tr>
<tr>
<td>
<a href="https://www.phishtank.com/developer_info.php" target="_blank">PhishTank</a>
</td>
<td>Conf
PhishTank delivers a list of suspected phishing URLs. Their data comes from human reports, but they also ingest external feeds where possible. It's a free service, but registering for an API key is sometimes necessary.
</td>
</tr>
<tr>
<td>
<a href="https://sslbl.abuse.ch/" target="_blank">SSL Blacklist</a>
</td>
<td>
SSL Blacklist (SSLBL) is a project maintained by abuse.ch. The goal is to provide a list of "bad" SSL certificates identified by abuse.ch to be associated with malware or botnet activities. SSLBL relies on SHA1 fingerprints of malicious SSL certificates and offers various blacklists
</td>
</tr>
</table> </table>
## Formats ## Formats