Reputation on the Internet Counts!
At some point the c-Champions will need to provide technical resources to the network engineers and stakeholder managers. This section of the Toolkit provides a listing of various cyber threat hunting tools for the technical analysts within stakeholder organizations. Below are a series of hotlinks and short descriptions of reputation tracking tools.
Blacklist Check – A tool used to check if your or anyone else’s IP address is listed on any black lists. (@. (n.d.). What Is My IP Address? IP Address Tools and More. Retrieved December 26, 2016, from http://whatismyipaddress.com/)
BrightCloud URL & IP Lookup – A tool used to lookup and view reputation analysis information of a URL, or IP address. (Tools and Support for Security Developers. (n.d.). Retrieved December 26, 2016, from http://www.brightcloud.com/)
Domain Reputation Lookup – A database used for getting information regarding IP addresses, domains, or networks. It provides a quick search for simple information but provides a really nice location tool. (SenderBase. (n.d.). Retrieved December 26, 2016, from https://www.senderbase.org/)
ShadowNet – “We track and flag cyber criminals by their IP address and/or domain and deliver threat intelligence through ShadowNet, an always-on feed of the latest cyber threat intel from around the world”. (RiskAnalytics. (n.d.). Retrieved December June 26, 2021, from https://riskanalytics.com/solutions/)
I-Blocklist – A site that posts and distributes block lists that can be useful in different kinds of software for staying safe. (I-BlockList | Home. (n.d.). Retrieved December 26, 2016, from https://www.iblocklist.com/)
IPVOID – A site that offers many different IP tools used to learn more about IP addresses. “IP blacklist check, whois lookup, dns lookup, ping, and more!” (IP Address Tools Online. (n.d.). Retrieved December 26, 2016, from http://www.ipvoid.com/)
MalwareCheck – A tool used for detecting malware and checking blacklists for suspicious URL’s.( MalwareCheck.org. (n.d.). Retrieved December 26, 2016, from http://malwarecheck.org/)
Spamhaus – A very large database used to store information on botnets, phishing attacks, and other types of spam. They have a searchable form that can be filled out. (Webteam, T. S. (n.d.). The Spamhaus Project. Retrieved December 26, 2016, from https://www.spamhaus.org/)
Check IoC – Allows the user to check IP addresses or Domain names against their extensive database. An account can be created to gain additional information. (Check an IP address or domain name. (n.d.). Retrieved December 26, 2016, from http://threatstop.com/checkip)
URL Security Checker – A tool that allows the user to check if the specified URL is categorized in Intel’s security database. (Customer URL Ticketing System. (n.d.). Retrieved December 26, 2016, from https://trustedsource.org/)
Ports.My-Addr – ” On this page, you can find tools for search TCP Port Numbers and UDP Port Numbers. ” (Port search,find port by number, 21500 udp/tcp port numbers/descriptions,library. (n.d.). Retrieved December 26, 2016, from http://ports.my-addr.com/tcp_port_list-udp_port_list_search_by_number.php)
Robtex – A comprehensive tool used for looking up DNS. (R. (2016). Robtex. Retrieved December 26, 2016, from https://www.robtex.com/)