A curated list of awesome Threat Intelligence resources
A concise definition of Threat Intelligence: evidence-based knowledge, including context, mechanisms, indicators, implications and actionable advice, about an existing or emerging menace or hazard to assets that can be used to inform decisions regarding the subject’s response to that menace or hazard.
Feel free to contribute.
Fraidycat is an app for Linux, Windows or Mac OS X which can be accessed from a local browser or a Tor onion site - and is a tool that can be used to follow folks on a variety of platforms. But rather than showing you a traditional 'inbox' or 'feed' view of all the incoming posts - Fraidycat braces itself against this unbridled firehose! - you are shown an overview of who is active and a brief summary of their activity.
Fraidycat attempts to dissolve the barriers between networks - each with their own seeming 'network effects' - and forms a personal network for you, a personal surveillance network, if you will, of the people you want to monitor. (It's as if the Web itself is now your network - imagine that.)
There are no fancy algorithms behind Fraidycat - everything is organized by recency. (Although, you can sort follows into tags and priority - "do I want to track this person in real-time? Is this a band that I am only interested in checking in on once a year?") For once, the point isn't for the tool to discern your intent from your behavior; the point is for you to wield the tool, as if you are a rather capable kind of human being.
Get free access to search worldwide news and top stories from over 40,000 sources in 50+ countries, 30+ languages. Full text searches and filtering on the server-side.
The mission of the CVE Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. There is one CVE Record for each vulnerability in the catalog. The vulnerabilities are discovered then assigned and published by organizations from around the world that have partnered with the CVE Program. Partners publish CVE Records to communicate consistent descriptions of vulnerabilities. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue, and to coordinate their efforts to prioritize and address the vulnerabilities.
The best RSS Search experience you can find.
A seamless RSS Search Engine experience with a hint of Machine Learning.
Has a REST API.
Open source: https://github.com/davidesantangelo/dato.rss
The Internet Storm Center has APIs for the threat feeds it collects and processes. Outputs XML, JSON, CSV, TSV, plain text, and PHP data structures.
TagTeam is an RSS / Atom / RDF aggregator with the ability to filter and remix its input feeds with a high degree of flexibility. Items can be added directly to TagTeam “bookmarking collections” via the provided delicious-like bookmarklet, and these items can be remixed and filtered like any other item.
TagTeam can aggregate content from anything that emits RSS, Atom, or RDF. This includes delicious, zotero, WordPress, twitter, mediawiki, connotea, blogger, github, and too many other applications and services to mention. It uses the feed-abstract gem, written as part of this project to create a better way of dealing with structured feeds. feed-abstract understands some generators and does magical things - like turning twitter hashtags into actual tags on aggregated items. Has its own search engine.
Written in Ruby on Rails, uses Postgres as its backend. Redis for queue processing. The search component is written in Java.
Free and open threat intel feeds. Reputation, malware identification, blacklists, known bad IP ranges, blocklists, and more.
Data feeds on the Open Streetmap site.
National Vulnerability Database.
NWS Homepage of the National weather Service. Offers multiple kinds of weather forecast feeds - RSS and XML. API You can dig around to find the kind of weather data you're looking for; you'll probably have to go to the sub-sites linked
FOSS software which implements a mailing list, not just over email but as a sharable, clonable git repo. Implements nntp, online html archives, and atom feeds. Written in perl. Designed to run on the lower possible common denominator machine. Uses a pull model, which optimizes for casual readers and members while still allowing for serious users.