This is a sequel part to the TOOLS FOR CYBER THREAT HUNTING (PART — I).
Tools for Cyber Threat Hunting
Greynoise is a web based application which can be used for identifying noisy (malicious/harmful) scanners (IP addresses). Another feature Greynoise provide is categorized noisy scanners according to security tags like a vulnerability name or a CVE.
Shodan is a search engine designed to map and gather information about internet-connected devices and systems.
GreenSnow is a web application which has a huge database of blacklisted/malicious IPs. Users can cross-check IP addresses whether they are benign or malicious.
9. Hybrid Analysis
Hybrid analysis is a free malware analysis web based tool which does both static and dynamic malware analysis.
URLScan.io is a website scanner for identifying suspicious and malicious URLs.