From d110bffbda40b49f5d37871d6e8409be56d68cab Mon Sep 17 00:00:00 2001 From: Liam Randall Date: Fri, 15 May 2015 16:05:16 -0400 Subject: [PATCH 1/2] Update README.md --- README.md | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/README.md b/README.md index 87d84a1..bf5954c 100644 --- a/README.md +++ b/README.md @@ -126,6 +126,8 @@ A curated list of awesome malware analysis tools and resources. Inspired by C&C blocklists. * [ZeuS Tracker](https://zeustracker.abuse.ch/blocklist.php) - ZeuS blocklists. +* [Critical Stack- Free Intel Market](https://intel.CriticalStack.com) - Free + intel aggregator with deduplication featuring 90+ feeds and over 1.2M indicators. ## Detection and Classification @@ -310,6 +312,8 @@ the [browser malware](#browser-malware) section.* *Analyze network interactions.* +* [Bro](https://www.bro.org) - Protocol analyzer that operates at incredible + scale; both file and network protocols. * [Fiddler](http://www.telerik.com/fiddler) - Intercepting web proxy designed for "web debugging." * [Hale](https://github.com/pjlantz/Hale) - Botnet C&C monitor. @@ -330,6 +334,7 @@ the [browser malware](#browser-malware) section.* * [Wireshark](https://www.wireshark.org/) - The network traffic analysis tool. + ## Memory Forensics *Tools for dissecting malware in memory images or running systems.* @@ -392,12 +397,15 @@ the [browser malware](#browser-malware) section.* * Andrew Case [@attrc](https://twitter.com/attrc) * Claudio [@botherder](https://twitter.com/botherder) +* Dustin Webber [@mephux](https://twitter.com/mephux) +* Liam Randall [@hectman](https://twitter.com/hectaman) * Glenn [@hiddenillusion](https://twitter.com/hiddenillusion) * jekil [@jekil](https://twitter.com/jekil) * Jurriaan Bremer [@skier_t](https://twitter.com/skier_t) * Lenny Zeltser [@lennyzeltser](https://twitter.com/lennyzeltser) * Mark Schloesser [@repmovsb](https://twitter.com/repmovsb) * Michael Ligh (MHL) [@iMHLv2](https://twitter.com/iMHLv2) +* Richard Bejtlich [@taosecurity](https://twitter.com/taosecurity) * Volatility [@volatility](https://twitter.com/volatility) ## Other From 2ac4dc0258c7edfd9a4b395adfcba38dcaf13b8e Mon Sep 17 00:00:00 2001 From: Liam Randall Date: Fri, 15 May 2015 16:11:06 -0400 Subject: [PATCH 2/2] Update README.md --- README.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/README.md b/README.md index bf5954c..b5eb654 100644 --- a/README.md +++ b/README.md @@ -334,7 +334,6 @@ the [browser malware](#browser-malware) section.* * [Wireshark](https://www.wireshark.org/) - The network traffic analysis tool. - ## Memory Forensics *Tools for dissecting malware in memory images or running systems.* @@ -398,11 +397,11 @@ the [browser malware](#browser-malware) section.* * Andrew Case [@attrc](https://twitter.com/attrc) * Claudio [@botherder](https://twitter.com/botherder) * Dustin Webber [@mephux](https://twitter.com/mephux) -* Liam Randall [@hectman](https://twitter.com/hectaman) * Glenn [@hiddenillusion](https://twitter.com/hiddenillusion) * jekil [@jekil](https://twitter.com/jekil) * Jurriaan Bremer [@skier_t](https://twitter.com/skier_t) * Lenny Zeltser [@lennyzeltser](https://twitter.com/lennyzeltser) +* Liam Randall [@hectman](https://twitter.com/hectaman) * Mark Schloesser [@repmovsb](https://twitter.com/repmovsb) * Michael Ligh (MHL) [@iMHLv2](https://twitter.com/iMHLv2) * Richard Bejtlich [@taosecurity](https://twitter.com/taosecurity)