Tool Bracketology Contest

#1

Hi everyone,
We’re launching a contest next week to run in parallel with upcoming basketball festivities. This is a chance to let everyone know your favorite tool, and see which is the favorite amongst the SecOps community!

Before we get started we need to build a bracket of tools. Tools must be free, not a platform product, and must have APIs. Reply to this post with your favorite tool(s)!

Tool URL Function Category
MXtoolbox mxtoolbox.com Email Headers Phishing & Email Investigation
TCP Utils www.tcpiputils.com/ IP/DNS/Domain Lookups Lookups
Cymon cymon.io Threat Intel Lookups
Phistank phishtank.com Phishing Phishing
VirusTotal virustotal.com Malware & Lookups Malware
Pastebin pastebin.com Dump site Dump Site
Threatcrowd threatcrowd.org/ Threat Intel Lookups
Apility apility.io IP/DNS/Domain Lookups Lookups
Who API whoapi.com Whois Lookups
IP to ASN iptoasn.com IP/ASN lookup Lookups
Malwr malwr.com Malware Sandbox Malware
Spamhaus spamhaus.org Spam Phishing & Email Investigation
Shodan shodan.io IoT Search Lookups
MacVendors macvendors.com MAC Manufactures Lookup Lookups
DNSDumpster dnsdumpster.com/ DNS Lookups Lookups
BGP Ranking https://www.circl.lu/projects/bgpranking/ Threat Intel Lookups
Tor Relay/Exit Node Checker https://exonerator.torproject.org/ IP Lookup Lookups
HoneyDB https://riskdiscovery.com Bad host lookup Lookups
Malc0de DNS Sinkhole http://malc0de.com/bl/ Malicious Domain Lookup Lookups
ScreenshotMachine https://www.screenshotmachine.com/ Malicious Site Evidence Gathering ?
Alienvault OTX https://www.alienvault.com/open-threat-exchange Malware & Lookups Malware
IsItPhishing https://isitphishing.org/ Threat Intel Lookups
URLVoid http://www.urlvoid.com/ Reputation Checker Lookups
RiskIQ PassiveTotal community.riskiq.com Lookups Lookups
Robtex robtex.com Lookups Lookups
VxVault vxvault.com Lookups Lookups
Dshield dshield.org Lookups Lookups
Abuse.ch abuse.ch Malware Malware
Security Trails securitytrails.com Lookups Lookups
Gist.github.com gist.github.com Dumpsite Dumpsite
Etherpad etherpad.org Dumpsite Dumpsite
1 Like

Community Access to AnyRun - Malware Analysis
pinned globally #2
0 Likes

#3

Team Cymru #totalhash: https://totalhash.cymru.com/

0 Likes

#4

Thanks @dave!

Best,
Emma

0 Likes

#5

C1fapp - c1fapp.com - Lookups - Lookups
URLscan - urlscan.io - Lookups - Lookups

1 Like

#6

It’s free but some plugins are paid:

2 Likes

#7
1 Like

#8
1 Like

#9
1 Like

#10
1 Like

#11

https://www.abuseipdb.com/

1 Like

#12

https://www.hybrid-analysis.com/apikeys/info

1 Like

#13

Here are some more that I got from @MisterShak’s post about Spiderfoot.

projecthoneypot.org


botscout.com




ipinfo.io
fullcontact.com
citadel.pw

1 Like

#14

Thanks @cody.cornell!

0 Likes

#15

BlueCoat Site Review (Checks the current categorization of WebPulse URL ratings)
http://sitereview.bluecoat.com/sitereview.jsp

1 Like

#16

Pi-Hole

Sweet Security

1 Like

#17

@mike.mitchell is there an API for that or do you have to use the GUI?

0 Likes

#18

There is an API. Im working on getting that submitted to our team this afternoon.
Swimlane

Mike Mitchell

Sales Engineer

mike.mitchell@swimlane.com
swimlane.com
202-507-9818

FacebookTwitterGithub

SecOps Hub

SecOps Hub is an open community for security pros to share ideas and collaborate - Join now!

Twitter

0 Likes

#19

NVD - No API but an RSS feed: https://nvd.nist.gov/vuln/data-feeds#RSS

0 Likes

#20

Is this like recon-ng, but on steroids??

0 Likes