Learning/skills upgrade platforms
- Lets defend: https://www.letsdefend.io/
- Cyberdeenders : https://cyberdefenders.org/
- Tryhackme: https://tryhackme.com/
- Hackthebox : https://www.hackthebox.com/
- blueteamlabs : https://blueteamlabs.online/
- TCM SEC: https://academy.tcm-sec.com/p/security-operations-soc-101
Certifications
- OffSec : SOC – 200 [OSDA]
- cyber Defenders: CCD
- Microsoft: Security Operations Analyst Associate
Digital Forensics Incident Response
Disk and Memory Forensics Tools
- Encase
- FTK
- Sleuth Kit/Autopsy
- Volatility
Network Forensics Tools
- Wireshark
- NetworkMiner
Incident Response Platforms
- TheHive
- MISP (Malware Information Sharing Platform)
- Cortex
Log Analysis Tools
- Splunk
- ELK Stack (Elasticsearch, Logstash, Kibana
Malware Analysis
- IDA Pro
- Ghidra
- Cuckoo Sandbox
- any.run
Endpoint Detection and Response (EDR)
- CrowdStrike Falcon
- Carbon Black
Mobile Forensics Tools
- Cellebrite UFED
- Oxygen Forensic Suite
Threat Intelligence
Commercial Threat Intelligence Platforms
- Recorded Future
- FireEye Threat Intelligence
- IBM X-Force Exchange
- Anomali ThreatStream
- ThreatConnect
Open Source Threat Intelligence Tools
- MISP (Malware Information Sharing Platform)
- Open Threat Exchange (OTX)
- CIRCL Passive DNS
Threat Intelligence Feeds
- AlienVault OTX
- VirusTotal
- Abuse.ch
- Palo Alto Networks AutoFocus
Analysis and Enrichment Tools
- Maltego
- PassiveTotal
- DomainTools
Threat Intelligence Automation and Orchestration
- SOAR (Security Orchestration, Automation, and Response)
- STIX/TAXII
Threat Intelligence Communities and Sharing Platforms
- Information Sharing and Analysis Centers (ISACs)
- FS-ISAC
- Health-ISAC
Threat Intelligence Enrichment Tools
- GreyNoise
- Shodan
- Have I Been Pwned
Threat Intelligence Reporting and Visualization
- Kibana (ELK Stack)
- Threat Intelligence Platforms (TIPs)
Other Useful Tools
- YARA
- Sysinternals Suite
when I find good resources or if you find good resources mentioned in the comments I’ll update the blog
Thanks for Reading