|
|
| Line 9: |
Line 9: |
| [[Category:National CERTs]] | | [[Category:National CERTs]] |
| [[Category:Security Operations Entities]] | | [[Category:Security Operations Entities]] |
|
| |
| =Description=
| |
| <br>
| |
| The Shadowserver Foundation is a 501(c)(3) non-profit organization dedicated to providing accurate and actionable information about malware, botnets, and phishing activity on the Internet. The organization offers a number of resources for security professionals, including a daily threat intelligence feed that details malware, botnet, and phishing activity around the world. The feed is updated daily and provides information on the latest threats, as well as analysis and recommendations from the Shadowserver team.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/get-reports/
| |
| [[Category:Individuals]]
| |
|
| |
| =Description=
| |
| <br>
| |
| According to their website, Shadowserver "is a non-profit 501(c)3 providing Internet security professionals with actionable data to identify, track, and disrupt cybercrime." The Dashboard is a central location for users to view and analyze data collected by the organization. Information is displayed in both graphical and tabular formats, and users can generate custom reports based on specific criteria. The Dashboard is updated in real-time, and users can subscribe to alerts to receive notifications when new
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://dashboard.shadowserver.org
| |
| [[Category:All Businesses]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The tool geo-ip/ASN/lookup service is a shadowserver that helps users look up and find the location of IP addresses, as well as the ASN (Autonomous System Number) associated with them. This can be useful for finding out the origin of an IP address, or for troubleshooting networking issues. The service is free to use, and is available online.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/api-asn-and-network-queries/
| |
| [[Category:Governments and Intergovernmental Organizations]]
| |
| [[Category:Law Enforcement]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
|
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| All Businesses|National CERTs
| |
|
| |
| =Description=
| |
| <br>
| |
|
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| All Businesses|National CERTs
| |
|
| |
| =Description=
| |
| <br>
| |
| The tool is designed to provide a malicious hash lookup service. The service is designed to help researchers identify files that may be associated with malware. The service is free to use and is available to anyone with an internet connection. The service is updated daily with new malware hashes.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/api-research/
| |
| [[Category:Law Enforcement]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| Shadowserver is a non-profit organization that tracks and analyzes internet attacks and vulnerabilities. They offer a variety of services, including Malware Project, which is a tool that allows users to submit malware samples for analysis. Users can submit samples via a web form or through an email interface. Once a sample is submitted, it is analyzed and a report is generated. The report includes information on the malware, such as its capabilities, how it propagates, and any known vulnerabilities. This
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/get-reports
| |
| [[Category:All Businesses]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| Network Reporting is a Shadowserver service that offers help for network administrators and operators who are struggling with malicious activity on their network. The service provides a monthly report that includes:
| |
|
| |
| -A list of all IP addresses that were seen on the network during the month
| |
| -A list of all domain names that were seen on the network during the month
| |
| -A list of all malware hashes that were seen on the network during the month
| |
|
| |
| The report also includes a brief description of the activity
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/
| |
| [[Category:Know What You Have - Create an Inventory]]
| |
| [[Category:Threat & Vulnerability Management]]
| |
| [[Category:Network Devices]]
| |
| [[Category:Security Testing & Auditing]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The Registrar of Last Resort (ROLR) is a tools that helps to identify shadow servers. This tools uses data from the European Commission's Joint Research Centre (JRC) and other organisations to create a list of active and historical IP addresses. The ROLR can be used to identify when a server is no longer active, as well as to find out the location and contact details of the server's owner.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.rolr.eu/
| |
| [[Category:Cybersecurity Providers]]
| |
| [[Category:Law Enforcement]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| Shadowserver is a nonprofit organization that collects and analyzes data on cybersecurity threats. Its Sandbox Project is a tool that analyzes files submitted by users to identify malware. The tool is available free of charge to anyone who wants to use it.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/get-reports
| |
| [[Category:All Businesses]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The Scanning Project by Shadowserver collects internet-wide scanning data that is used by the security community to find and fix critical cybersecurity vulnerabilities before the bad guys can exploit them. The data collected by the Scanning Project helps security researchers identifyWhich systems are vulnerable to attack, where the vulnerabilities are located, and how they can be exploited. By providing this information to the security community, the Scanning Project helps make the internet a safer place for everyone.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/get-reports/
| |
| [[Category:All Businesses]]
| |
| [[Category:Carriers & Communications]]
| |
| [[Category:Content Providers]]
| |
| [[Category:Critical Infrastructure]]
| |
| [[Category:Financial Institutions]]
| |
| [[Category:Governments and Intergovernmental Organizations]]
| |
| [[Category:Governments - US State - Local - Tribal - Territorial (SLTT)]]
| |
| [[Category:Individuals]]
| |
| [[Category:Information Sharing Organizations]]
| |
| [[Category:ISPs]]
| |
| [[Category:Law Enforcement]]
| |
| [[Category:MSPs and MSSPs]]
| |
| [[Category:National CERTs]]
| |
| [[Category:Nonprofits & Charities]]
| |
| [[Category:Registrars and Registries]]
| |
| [[Category:Security Operations Entities]]
| |
| [[Category:Small & Medium Sized Businesses]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The Shadowserver Foundation is a 501c3 non-profit dedicated to providing internet security. They collect data on malware, bots, and vulnerabilities to help defenders. The Sinkholing Project is just one of the many projects that Shadowserver runs.
| |
|
| |
| The Sinkholing Project collects data on malicious DNS traffic. This data is used to help identify botnets and other malicious activity. By sinkholing DNS traffic, Shadowserver is able to track and report on the activity of
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/get-reports
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The Shadowserver Foundation is a non-profit organization dedicated to improving the security of the Internet by providing intelligence and data on cyber threats. One of the ways they do this is by providing a tool for collectors to SSL/TLS certificates.
| |
|
| |
| This tool allows collectors to obtain a list of all SSL/TLS certificates that are currently active on the public Internet. This information can be used to help identify potential cyber threats and vulnerabilities. The data collected by this tool is available to the
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/api-scan-ssl/
| |
| [[Category:Cybersecurity Providers]]
| |
| [[Category:National CERTs]]
| |
| [[Category:Nonprofits & Charities]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The Shadowserver Foundation is a 501c3 non-profit organization formed in 2004 to provide public awareness and protection from cybercrime.
| |
|
| |
| The Special Projects Team (SSPT) is a group of dedicated volunteers who work on unique projects that require in-depth analysis or special attention. The SSPT is comprised of experts in many different fields including computer security, forensics, and malware analysis.
| |
|
| |
| The SSPT has been responsible for some of the most groundbreaking work done
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/contact/
| |
| [[Category:All Businesses]]
| |
| [[Category:National CERTs]]
| |
|
| |
| =Description=
| |
| <br>
| |
| The Trusted program lookup service is a shadowserver that lets users query its database of trusted programs. This can be useful for verifying the legitimacy of a program before running it, or for finding programs that may be malicious. The service provides an API that can be used to query the database. The database is updated periodically, and the service is free to use.
| |
| <br>
| |
| =More Information=
| |
| <br>
| |
| https://www.shadowserver.org/what-we-do/network-reporting/api-trusted-programs-query/
| |
| [[Category:National CERTs]]
| |
