From 314f048f70aabaa17072f228f441d42c3c199e1b Mon Sep 17 00:00:00 2001 From: Bert-Janp Date: Fri, 10 May 2024 20:39:53 +0200 Subject: [PATCH] threatview.io update --- README.md | 6 +++--- Scripts/StatisticsTable.md | 6 +++--- ThreatIntelFeeds.csv | 5 ++++- 3 files changed, 10 insertions(+), 7 deletions(-) diff --git a/README.md b/README.md index 44e0768..78d28f8 100644 --- a/README.md +++ b/README.md @@ -16,11 +16,11 @@ The content is served as is. When using the content in a business environment th | --- | --- | | DNS | 15 | | IP | 70 | -| MD5 | 10 | -| SHA1 | 3 | +| MD5 | 11 | +| SHA1 | 4 | | SHA256 | 7 | | SSL | 1 | -| URL | 22 | +| URL | 23 | | CVEID | 4 | # Combine Threat Intel in your EDR and SIEM diff --git a/Scripts/StatisticsTable.md b/Scripts/StatisticsTable.md index f588a35..3808cda 100644 --- a/Scripts/StatisticsTable.md +++ b/Scripts/StatisticsTable.md @@ -2,9 +2,9 @@ | --- | --- | | DNS | 15 | | IP | 70 | -| MD5 | 10 | -| SHA1 | 3 | +| MD5 | 11 | +| SHA1 | 4 | | SHA256 | 7 | | SSL | 1 | -| URL | 22 | +| URL | 23 | | CVEID | 4 | diff --git a/ThreatIntelFeeds.csv b/ThreatIntelFeeds.csv index 121828d..ee4fe7d 100644 --- a/ThreatIntelFeeds.csv +++ b/ThreatIntelFeeds.csv @@ -130,4 +130,7 @@ threatview.io;C2 Hunt Feed Infrastructure hosting Command & Control Servers foun threatview.io;C2 Hunt Feed Infrastructure hosting Command & Control Servers found during Proactive Hunt by Threatview.io;DNS;https://threatview.io/Downloads/High-Confidence-CobaltStrike-C2%20-Feeds.txt threatview.io;IP Blocklist Malicious IP Blocklist for known Bad IP addresses;IP;https://threatview.io/Downloads/IP-High-Confidence-Feed.txt threatview.io;All IP addresses which have been reported within the last 48 hours as having run attacks on the service FTP.;IP;https://lists.blocklist.de/lists/ftp.txt -threatview.io;Domain Blocklist Malicious Domains identified for phishing/ serving malware/ command and control;DNS;https://threatview.io/Downloads/DOMAIN-High-Confidence-Feed.txt \ No newline at end of file +threatview.io;Domain Blocklist Malicious Domains identified for phishing/ serving malware/ command and control;DNS;https://threatview.io/Downloads/DOMAIN-High-Confidence-Feed.txt +threatview.io;MD5 Hash Blocklist: MD5 hashes of malicious files or associated with - malware, ransomware, hack tools, bots etc.;MD5;https://threatview.io/Downloads/MD5-HASH-ALL.txt +threatview.io;URL Blocklist Malicious URL's serving malware, phishing, botnets and C2;URL;https://threatview.io/Downloads/URL-High-Confidence-Feed.txt +threatview.io;SHA File Hash Blocklist SHA hashes of files known or linked with malware execution;SHA1;https://threatview.io/Downloads/SHA-HASH-FEED.txt \ No newline at end of file