Shadowserver - Cybersecurity training for CSIRTs
Description
The tool, Cybersecurity Training for CSIRTs, is a course offered by the Shadowserver Foundation. The course is designed to train incident responders in the latest cybersecurity techniques and best practices. The course is self-paced and includes video lectures, hands-on exercises, and quizzes. Upon completion of the course, attendees will receive a certificate of completion.
More Information
https://www.shadowserver.org/contact/
Description
The Shadowserver Foundation is a 501(c)(3) non-profit organization dedicated to providing accurate and actionable information about malware, botnets, and phishing activity on the Internet. The organization offers a number of resources for security professionals, including a daily threat intelligence feed that details malware, botnet, and phishing activity around the world. The feed is updated daily and provides information on the latest threats, as well as analysis and recommendations from the Shadowserver team.
More Information
https://www.shadowserver.org/what-we-do/network-reporting/get-reports/
Description
According to their website, Shadowserver "is a non-profit 501(c)3 providing Internet security professionals with actionable data to identify, track, and disrupt cybercrime." The Dashboard is a central location for users to view and analyze data collected by the organization. Information is displayed in both graphical and tabular formats, and users can generate custom reports based on specific criteria. The Dashboard is updated in real-time, and users can subscribe to alerts to receive notifications when new
More Information
https://dashboard.shadowserver.org
Description
The tool geo-ip/ASN/lookup service is a shadowserver that helps users look up and find the location of IP addresses, as well as the ASN (Autonomous System Number) associated with them. This can be useful for finding out the origin of an IP address, or for troubleshooting networking issues. The service is free to use, and is available online.
More Information
https://www.shadowserver.org/what-we-do/network-reporting/api-asn-and-network-queries/
Description
More Information
All Businesses|National CERTs
Description
More Information
All Businesses|National CERTs
Description
The tool is designed to provide a malicious hash lookup service. The service is designed to help researchers identify files that may be associated with malware. The service is free to use and is available to anyone with an internet connection. The service is updated daily with new malware hashes.
More Information
https://www.shadowserver.org/what-we-do/network-reporting/api-research/
Description
Shadowserver is a non-profit organization that tracks and analyzes internet attacks and vulnerabilities. They offer a variety of services, including Malware Project, which is a tool that allows users to submit malware samples for analysis. Users can submit samples via a web form or through an email interface. Once a sample is submitted, it is analyzed and a report is generated. The report includes information on the malware, such as its capabilities, how it propagates, and any known vulnerabilities. This
More Information
https://www.shadowserver.org/what-we-do/network-reporting/get-reports
Description
Network Reporting is a Shadowserver service that offers help for network administrators and operators who are struggling with malicious activity on their network. The service provides a monthly report that includes:
-A list of all IP addresses that were seen on the network during the month -A list of all domain names that were seen on the network during the month -A list of all malware hashes that were seen on the network during the month
The report also includes a brief description of the activity
More Information
https://www.shadowserver.org/what-we-do/network-reporting/
Description
The Registrar of Last Resort (ROLR) is a tools that helps to identify shadow servers. This tools uses data from the European Commission's Joint Research Centre (JRC) and other organisations to create a list of active and historical IP addresses. The ROLR can be used to identify when a server is no longer active, as well as to find out the location and contact details of the server's owner.
More Information
Description
Shadowserver is a nonprofit organization that collects and analyzes data on cybersecurity threats. Its Sandbox Project is a tool that analyzes files submitted by users to identify malware. The tool is available free of charge to anyone who wants to use it.
More Information
https://www.shadowserver.org/what-we-do/network-reporting/get-reports
Description
The Scanning Project by Shadowserver collects internet-wide scanning data that is used by the security community to find and fix critical cybersecurity vulnerabilities before the bad guys can exploit them. The data collected by the Scanning Project helps security researchers identifyWhich systems are vulnerable to attack, where the vulnerabilities are located, and how they can be exploited. By providing this information to the security community, the Scanning Project helps make the internet a safer place for everyone.
More Information
https://www.shadowserver.org/what-we-do/network-reporting/get-reports/
Description
The Shadowserver Foundation is a 501c3 non-profit dedicated to providing internet security. They collect data on malware, bots, and vulnerabilities to help defenders. The Sinkholing Project is just one of the many projects that Shadowserver runs.
The Sinkholing Project collects data on malicious DNS traffic. This data is used to help identify botnets and other malicious activity. By sinkholing DNS traffic, Shadowserver is able to track and report on the activity of
More Information
https://www.shadowserver.org/what-we-do/network-reporting/get-reports
Description
The Shadowserver Foundation is a non-profit organization dedicated to improving the security of the Internet by providing intelligence and data on cyber threats. One of the ways they do this is by providing a tool for collectors to SSL/TLS certificates.
This tool allows collectors to obtain a list of all SSL/TLS certificates that are currently active on the public Internet. This information can be used to help identify potential cyber threats and vulnerabilities. The data collected by this tool is available to the
More Information
https://www.shadowserver.org/what-we-do/network-reporting/api-scan-ssl/
Description
The Shadowserver Foundation is a 501c3 non-profit organization formed in 2004 to provide public awareness and protection from cybercrime.
The Special Projects Team (SSPT) is a group of dedicated volunteers who work on unique projects that require in-depth analysis or special attention. The SSPT is comprised of experts in many different fields including computer security, forensics, and malware analysis.
The SSPT has been responsible for some of the most groundbreaking work done
More Information
https://www.shadowserver.org/contact/
Description
The Trusted program lookup service is a shadowserver that lets users query its database of trusted programs. This can be useful for verifying the legitimacy of a program before running it, or for finding programs that may be malicious. The service provides an API that can be used to query the database. The database is updated periodically, and the service is free to use.
More Information
https://www.shadowserver.org/what-we-do/network-reporting/api-trusted-programs-query/
- All Businesses
- Carriers & Communications
- Content Providers
- Critical Infrastructure
- Cybersecurity Providers
- Financial Institutions
- Governments - US State - Local - Tribal - Territorial (SLTT)
- Governments and Intergovernmental Organizations
- ISPs
- Individuals
- Information Sharing Organizations
- Know What You Have - Create an Inventory
- Law Enforcement
- MSPs and MSSPs
- National CERTs
- Network Devices
- Nonprofits & Charities
- Registrars and Registries
- Security Operations Entities
- Security Testing & Auditing
- Small & Medium Sized Businesses
- Threat & Vulnerability Management
