ch0ic3/awesome-threat-intelligence
1
0
Fork 0
mirror of https://github.com/hslatman/awesome-threat-intelligence.git synced 2025-01-19 01:38:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #1 from sduff/sduff-whitelists

Browse Source 
Added 3 whitelists
This commit is contained in:
Simon Duff 2017-01-23 15:31:43 +08:00 committed by GitHub
commit b7bd716c09
1 changed files with 25 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
README.md
View File

@ -19,6 +19,14 @@ Some consider these sources as threat intelligence, opinions differ however.
A certain amount of (domain- or business-specific) analysis is necessary to create true threat intelligence. A certain amount of (domain- or business-specific) analysis is necessary to create true threat intelligence.
<table> <table>
<tr>
<td>
<a href="http://s3.amazonaws.com/alexa-static/top-1m.csv.zip" target="_blank">Alexa Top 1 Million sites</a>
</td>
<td>
Probable Whitelist of the top 1 Million sites from Amazon(Alexa).
</td>
</tr>
<tr> <tr>
<td> <td>
<a href="https://docs.google.com/spreadsheets/u/1/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/pubhtml" target="_blank">APT Groups and Operations</a> <a href="https://docs.google.com/spreadsheets/u/1/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/pubhtml" target="_blank">APT Groups and Operations</a>
@ -51,6 +59,14 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea
Tracks several active botnets. Tracks several active botnets.
</td> </td>
</tr> </tr>
<tr>
<td>
<a href="http://s3-us-west-1.amazonaws.com/umbrella-static/index.html" target="_blank">Cisco Umbrella</a>
</td>
<td>
Probable Whitelist of the top 1 million sites resolved by Cisco Umbrella (was OpenDNS).
</td>
</tr>
<tr> <tr>
<td> <td>
<a href="https://intel.criticalstack.com/" target="_blank">Critical Stack Intel</a> <a href="https://intel.criticalstack.com/" target="_blank">Critical Stack Intel</a>
@ -221,6 +237,14 @@ A certain amount of (domain- or business-specific) analysis is necessary to crea
SSL Blacklist (SSLBL) is a project maintained by abuse.ch. The goal is to provide a list of "bad" SSL certificates identified by abuse.ch to be associated with malware or botnet activities. SSLBL relies on SHA1 fingerprints of malicious SSL certificates and offers various blacklists SSL Blacklist (SSLBL) is a project maintained by abuse.ch. The goal is to provide a list of "bad" SSL certificates identified by abuse.ch to be associated with malware or botnet activities. SSLBL relies on SHA1 fingerprints of malicious SSL certificates and offers various blacklists
</td> </td>
</tr> </tr>
<tr>
<td>
<a href="https://statvoo.com/dl/top-1million-sites.csv.zip" target="_blank">Statvoo Top 1 Million Sites</a>
</td>
<td>
Probable Whitelist of the top 1 million web sites, as ranked by Statvoo.
</td>
</tr>
<tr> <tr>
<td> <td>
<a href="https://strongarm.io" target="_blank">Strongarm, by Percipient Networks</a> <a href="https://strongarm.io" target="_blank">Strongarm, by Percipient Networks</a>