π§ Threat Intelligence & IOC Research
- VirusTotal β File, URL, and domain analysis
- Shodan β Internet device and exposure search
- AbuseIPDB β IP reputation lookup
- AlienVault OTX β Community threat intel feeds
- URLScan.io β Website scanning and sandboxing
- Hybrid Analysis β Sandbox malware analysis
- Any.Run β Interactive malware detonation
- MalwareBazaar β Malware samples and hashes
- ThreatFox β IOC threat intelligence database
- ZeroDay.im β Real-time exploit and vulnerability data
π§° Security Tools & Analysis
- MITRE ATT&CK Navigator β TTP mapping reference
- LOLBAS Project β Living-off-the-land binaries
- GTFOBins β Linux/Unix privilege escalation
- VirusShare β Malware repository (registration required)
- Censys β Internet asset and host intelligence
- GreyNoise β Scanner and actor intelligence
- Have I Been Pwned β Breach lookup by email
βοΈ Microsoft & Azure Service Health
- Microsoft 365 Service Health β Status across Office apps
- Azure Service Health β Regional Azure outage dashboard
- Microsoft Teams Service Health β Teams outage & reliability
- Exchange Online Health β Exchange Online service status
- Microsoft Security Advisories β Patch & CVE tracking
π©οΈ Multi-Cloud & SaaS Outage Dashboards
- AWS Service Health Dashboard β Regional AWS service incidents
- Google Workspace Status β Gmail, Drive, Meet, etc.
- Cloudflare Status β CDN, DNS, and edge network issues
- GitHub Status β Repo and Actions outages
- Slack Status β Messaging and integration issues
- Zoom Service Status β Meeting & API service uptime
π§ Incident Response & Threat Intel Feeds
- The DFIR Report β Real-world intrusion reports
- Unit42 (Palo Alto) β APT and malware research
- Mandiant Threat Intel β APT profiles and malware write-ups
- CrowdStrike Blog β Threat actor insights
- Microsoft Sentinel GitHub β Detection rules & KQL examples
- FBI IC3 β Cybercrime reporting and alerts
- CISA Alerts & Advisories β Federal cybersecurity guidance