杂谈
最近有很多网安的朋友问到威胁情报,有没有一些置信度比较高的Feed源,我们今天做一个汇总。
相关参数说明
置信度通常用来表明威胁情报来源的可信程度,值越高标识该情报源情报越可靠。
下面分为三个档次:
- 1-2为红色,不可信;
- 3为黄色,信誉度一般;
- 4-5为绿色,信誉度更高。
情报源
| 情报源名称 | 置信度 | 情报类型 | 情报数量 | 情报链接地址 |
| OpenPhish | 5 | MD5,URL,IP,DOMAIN,SHA1 | 59918 | https://openphish.com/feed.txt |
| cinsscore | 2 | IP | 32004 | https://cinsscore.com/list/ci-badguys.txt |
| blocklist | 2 | IP | 39158 | https://lists.blocklist.de/lists/all.txt |
| URLHaus | 5 | IP,URL | 95237 | https://urlhaus.abuse.ch/downloads/csv/ |
| CyberCure_IP | 1 | IP | 5589 | https://api.cybercure.ai/feed/get_ips?type=csv |
| stamparm_level1 | 2 | IP | 27928 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/1.txt |
| abuse_Bazaar | 1 | MD5,URL,DOMAIN | 37842 | https://bazaar.abuse.ch/export/txt/md5/full/ |
| CyberCure_URL | 4 | DOMAIN,IP | 609 | https://api.cybercure.ai/feed/get_url?type=csv |
| CyberCure_Hash | 4 | SHA1 | 604 | https://api.cybercure.ai/feed/get_hash?type=csv |
| stamparm_level2 | 2 | IP | 27566 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/2.txt |
| stamparm_level3 | 2 | IP | 27211 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/3.txt |
| stamparm_level4 | 2 | IP | 21627 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/4.txt |
| stamparm_level7 | 2 | IP | 435 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/7.txt |
| Botvrij_domain | 1 | DOMAIN | 3577 | https://www.botvrij.eu/data/ioclist.domain |
| Botvrij_hostname | 1 | DOMAIN | 526 | https://www.botvrij.eu/data/ioclist.hostname |
| Botvrij_ip | 1 | IP | 267 | https://www.botvrij.eu/data/ioclist.ip-dst |
| Botvrij_url | 1 | IP,URL | 209 | https://www.botvrij.eu/data/ioclist.url |
| Botvrij_md5 | 1 | MD5 | 694 | https://www.botvrij.eu/data/ioclist.md5 |
| stamparm_level8 | 2 | IP | 126 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/8.txt |
| stamparm_level6 | 2 | IP | 1388 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/6.txt |
| stamparm_level5 | 2 | IP | 5913 | https://raw.githubusercontent.com/stamparm/ipsum/master/levels/5.txt |
| Botvrij | 3 | DOMAIN | 10846 | https://www.botvrij.eu/data/blocklist/blocklist_full.csv |
| alienvault | 2 | DOMAIN,URL,IP | 5789 | https://reputation.alienvault.com/reputation.generic |
| ZeroDot1_CoinBlockerLists_list | 4 | DOMAIN,IP | 13616 | https://gitlab.com/ZeroDot1/CoinBlockerLists/raw/master/list.txt?inline=false |
| ZeroDot1_CoinBlockerLists_optional | 4 | DOMAIN | 3050 | https://gitlab.com/ZeroDot1/CoinBlockerLists/raw/master/list_optional.txt?inline=false |
| ZeroDot1_CoinBlockerLists_brower | 4 | DOMAIN | 9057 | https://gitlab.com/ZeroDot1/CoinBlockerLists/raw/master/list_browser.txt?inline=false |
| malsilo_url | 4 | MD5,DOMAIN,IP,URL | 2244 | https://malsilo.gitlab.io/feeds/dumps/url_list.txt |
| malsilo_ipv4 | 5 | IP | 4730 | https://malsilo.gitlab.io/feeds/dumps/ip_list.txt |
| malsilo_domain | 5 | DOMAIN | 317 | https://malsilo.gitlab.io/feeds/dumps/domain_list.txt |
| cybercrime_tracker | 5 | DOMAIN,IP | 9103 | https://cybercrime-tracker.net/all.php |
| Feodotrakcer | 5 | IP | 3895 | https://feodotracker.abuse.ch/downloads/ipblocklist.csv |
| cybercrime_tracker_ccamlist | 5 | SHA1 | 1332 | https://cybercrime-tracker.net/ccamlist.php |
| cybercrime_tracker_ccamgate | 5 | DOMAIN,IP,URL | 1536 | https://cybercrime-tracker.net/ccamgate.php |
© 版权声明
THE END
暂无评论内容