安全战术情报资料整合
情报种类 | 情报类型 | 情报源 | url |
战术情报 | 基础信息数据 | Alienvault ThreatCrowd | https://www.threatcrowd.org |
360威胁情报中心 | https://ti.360.net | ||
RiskIQ PassiveTotal | https://community.riskiq.com | ||
微步在线查询平台 | https://x.threatbook.cn | ||
FaceBook ThreatExchange | https://developers.facebook.com/products/threat-exchange | ||
NetworkScan Monitor | http://scan.netlab.360.com/ | ||
eSentire Cymon | https://cymon.io | ||
病毒样本数据 | Google Virustotal | https://www.virustotal.com/ | |
微步在线沙盒 | https://s.threatbook.cn | ||
Cisco TalosIntelligence Mal-List | https://www.talosintelligence.com/reputation_center/malware_rep#mal-outbreaks | ||
CrowdStrike Falcon Sandbox | https://www.hybrid-analysis.com https://www.reverse.it |
||
腾讯Habo分析平台 | https://habo.qq.com | ||
事件型情报 | Alienvault OTX | https://otx.alienvault.com | |
IBM X-Force Exchange | https://exchange.xforce.ibmcloud.com/ | ||
网络信息数据 | Censys | https://censys.io | |
Shodan | https://shodan.io | ||
Passive DNS | https://passivedns.cn/ | ||
Cisco TalosIntelligence BL | https://www.talosintelligence.com/documents/ip-blacklist | ||
Dshield | https://www.dshield.org/ | ||
IBM DNS Blacklist | http://filterdb.iss.net/dnsblinfo/ | ||
SANS ISC Data | https://isc.sans.edu/ | ||
漏洞利用数据 | exploit-db | https://www.exploit-db.com | |
Saucs | https://saucs.org | ||
Pastebin | https://pastebin.com | ||
规则类数据 | Cisco TalosIntelligence AMP | https://www.talosintelligence.com/amp-naming | |
Snort Rules | https://snort.org/products#rule_subscriptions | ||
Emergency Threats Rules | https://rules.emergingthreats.net/open/ | ||
攻击数据 | Ransomware Domain List | https://ransomwaretracker.abuse.ch/blocklist/ | |
DGA Domain | http://data.netlab.360.com/dga | ||
DRDoS Reflector | http://data.netlab.360.com/drdos-reflector | ||
C&C MalConn | http://data.netlab.360.com/malconn | ||
Mirai C&C | http://data.netlab.360.com/mirai-c2 | ||
Hajime | http://data.netlab.360.com/hajime/ | ||
DDoS Monitor | https://ddosmon.net/ |
详细xlxs版本下载