List of online Tools for Blue Teamers

This is a list of online tools for blue teamers which I use and appreciate. This page will be updated regularly and is therefore also pinned on the homepage.

Mail Security

• Message Header Analyzer - Lets you paste mail headers which will then be analized and nicely presented

DNS Tools

• DNS Dumpster - domain research tool that can discover hosts related to a domain

Website Analysis

• urlscan.io - A sandbox for the web
• Lookyloo - check and review URLs and websites, see captures, requests etc.

Malware Analysis

• Pandora - quick, private and simple suspicious document analysis
• CIRCL hashlookup - public API to lookup hash values against known database of files
• VirusTotal - Analyse suspicious files, domains, IPs and URLs to detect malware and other breaches, automatically share them with the security community
• Any.run - A free malware sandbox. I wouldn’t upload any files that could contain sensitive data…

Vulnerability Management

• CIRCL vulnerability lookup - see latest vulns, search for vendors, products
• CVE Crowd - lists CVEs actively discussed on the Fediverse

IP Reputation

• IPQS
• Talos Intelligence Search
• apivoid