One of the best resources that I have found for information on computer security, evidence gathering, and investigating suspicious activity on my networks is OSINT Framework. OSINT is an acronym for Open-Source Intelligence. The site has links to a wide range of sites to gather information on just about anything you want. A large number of them are free to use, with some requiring a subscription. There are a few links that are no longer functional, or the tools have been decommissioned, but overall, it is a fantastic resource for finding and processing information. The Exploits & Advisories section has links to the well-known vulnerability and security sites.
The site is also a potential rabbit hole. I have found myself more than once deep in the hole following a trail of IPs from packet captures and malicious files. OSINT Framework is overall a good resource. I have used and recommended this site to coworkers in the past when they have wanted to find info for work.
Link: OSINT Framework
Comments
Post a Comment