diagjgnagmnjdfnfcciocmjcllacgkab
SOC Multi-tool is a powerful and user-friendly browser extension that streamlines investigations for security professionals. The SOC Multi-tool is a powerful and user-friendly tool that streamlines investigations for security professionals. With a range of features and capabilities, this open-source tool allows you to quickly and easily investigate text that you have highlighted, using a variety of different resources. Some of the key features of the SOC Multi-tool include: • IP Reputation Lookup using VirusTotal & AbuseIPDB • IP Info Lookup using Tor relay checker & WHOIS • Hash Reputation Lookup using VirusTotal • Domain Reputation Lookup using VirusTotal & AbuseIPDB • Domain Info Lookup using Alienvault • Living off the land binaries Lookup using the LOLBas project • Decoding of Base64 & HEX using CyberChef • File Extension & Filename Lookup using fileinfo.com & File.net • MAC Address manufacturer Lookup using maclookup.com • Parsing of UserAgent using user-agents.net • Microsoft Error code Lookup using Microsoft's DB • Event ID Lookup (Windows, Sharepoint, SQL Server, Exchange, and Sysmon) Using the SOC Multi-tool is simple, just highlight the text you want to investigate, right-click and navigate to the type of data highlighted, and select your desired investigation. New tabs will open with the results of your investigation, making it easy to work with multiple investigations at once. SOC Multi-tool is a community-driven project, and the developer encourages users to contribute and share better resources.
OSINT Angel
OSINT Angel is a browser extension that aids in gathering and analyzing OSINT data from various sources. OSINT Angel is a powerful cybersecurity tool designed to bring Open Source Intelligence (OSINT) capabilities directly to your browser. The world of the internet is teeming with potential threats and hazards. Understanding these risks is crucial for cybersecurity analysts, researchers, and enthusiasts alike. This is where OSINT Angel comes into play, serving as your personal guardian in the vast cyber realm. Through integrating multiple threat intelligence APIs, the OSINT Angel extension provides real-time, in-depth data on IPs, URLs, and hashes directly from your browser. The extension will fetch data from reputable sources like VirusTotal, IBM X-Force, AbuseIPDB, IPQualityScore, and ThreatJammer, allowing you to perform comprehensive and efficient cyber threat intelligence operations. Once you've installed the OSINT Angel, you can simply right-click on any IP address, URL, or hash within your browser and select 'Perform OSINT.' The extension will quickly evaluate the selected data point against multiple threat databases. The process includes checking IPs for malicious activity, assessing URLs for potential threats, and verifying hashes against known malware databases. This comprehensive analysis is then neatly formatted and copied to your clipboard. This reduces the time-consuming process of manual threat hunting and analysis, freeing you to focus on more strategic aspects of your cybersecurity work. The extension also provides a notification once the OSINT is complete, ensuring you don't miss any crucial information. Beyond the technical, OSINT Angel also respects your privacy. All analysis is done on-demand and no personal data is stored or shared with any third parties. This ensures that your cybersecurity research doesn't compromise your own personal security. OSINT Angel is not just a tool, it's a companion for anyone interested in cybersecurity. Whether you're a seasoned analyst, a cybersecurity student, or just a curious mind, OSINT Angel provides invaluable insights in a fast and user-friendly manner. Utilizing OSINT Angel can significantly enhance your understanding of the cyber threat landscape, making the internet a safer place for everyone. Upgrade your browser today with OSINT Angel, and let it guide you through the intricate world of cybersecurity and threat intelligence. Requires your own APIKEYS for VirusTotal, IBM X-Force, AbuseIPDB, IPQualityScore, and ThreatJammer all free and available once registered.
CrowdScrape
Scrape web content for indicators of interest and integrate CrowdStrike Intelligence information The CrowdStrike Intelligence Team is proud to announce the release of CrowdScrape version 1.5.0. CrowdScrape is a Chrome Plugin designed to allow you to be able to scrape indicators from various websites and in-browser documents such as PDF reports while matching the data up against CrowdStrike Intelligence. This release provides bug fixes and enables support for customers in all cloud environments, and includes support for the OAuth2-based Intel API, which has replaced the deprecated legacy key-based APIs (see https://falcon.crowdstrike.com/support/documentation for further information on our API). This easy to use tool produces indicator lists that collect: · Domain, IP addresses, URLs, hashes (MD5, SHA1, SHA256) and Bitcoin addresses · On-Screen Tagging of CrowdStrike known indicators, and links to Indicator Search · Matches to CrowdStrike Intelligence with links to reports in CrowdStrike Intel Portal · Integrations with the CrowdStrike Indicator Graph to visualise intelligence In addition, you can use CrowdScrape to copy any indicators to clipboard making it easier to pull OSINT from different sources and converting this to a text file for implementation into your systems.
ATT&CK Powered Suit
Powered Suit puts the MITRE ATT&CK® knowledge base at your fingertips. Instantly search ATT&CK techniques, groups, and more. ATT&CK Powered Suit puts the MITRE ATT&CK® knowledge base at your fingertips. Instantly search ATT&CK techniques, groups, and more without disrupting your workflow. Copy snippets into a notebook to streamline your research. Export selected techniques to ATT&CK navigator. The extension supports context menus, omnibar support, and more. This extension is provided by the Center for Threat-Informed Defense as free and open source code in service of our mission: to advance the state of the art and the state of the practice in threat-informed defense globally. The Center for Threat-Informed Defense does not collect or share any data about users or their usage of ATT&CK Powered Suit. Search queries and other features are performed locally in the browser. If you are signed into Chrome using a Google account, then your bookmarks data is synced via your Google account. Copyright 2021-2026 MITRE. Approved for public release. Document number CT0052. Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.
Pulsedive Threat Intelligence
Highlight IPs, domains, and URLs on any website to enrich them using Pulsedive's threat intelligence. Streamline real-time threat research and analysis on any website you visit with Pulsedive’s threat intelligence browser add-on. Highlight IPs, domains, URLs, or threat names in any website text to enrich them using Pulsedive's free Community dataset. Get immediate, up-to-date context when reading cybersecurity news and threat advisories, or exploring threat intelligence collections and research. Create a free account at pulsedive.com for increased limits and additional capabilities. – FEATURES: • Indicator Lookup - highlight text around an IP, URL, or domain to enrich with contextual data from Pulsedive, including associated threats, screenshots, ports, protocols, web technologies, HTTP headers, meta tags, WHOIS data, and much more • On-Demand Scans - perform real-time passive or active scans on IPs, domains, and URLs to fetch live data • Bulk Processing - highlight text containing hundreds or thousands of indicators to parse and refang in bulk, download them as a CSV, and submit to Pulsedive Analyze for bulk enrichment • Threat Research - look up threat names and aliases to retrieve threat summaries, associated indicators, TTPs, latest news, and additional context • Website Enrichment - click the add-on button without highlighting text to retrieve domain information for the website you're visiting • Mute Options - reduce noise by easily muting the auto-popup temporarily or on specific sites • Flexible Controls - adjust the add-on settings to control when, where, and how Pulsedive parses threat intelligence information • Quick Pivoting - convenient one-click pivot to the Pulsedive Community platform at pulsedive.com for further analysis – WHAT'S NEW - VERSION 3: The latest update introduces bulk indicator processing, advanced settings & controls, and an improved user experience and interface. • Dark mode • Free-text parsing for IPs, URLs, and domains • Bulk indicator processing • Muting/unmuting and website exclusions • Usage guide in Settings page • Fixed punycode domain support • Fixed various CSS conflicts with injected popup – Pulsedive offers frictionless threat intelligence solutions for growing teams. The Pulsedive Community platform at pulsedive.com aggregates, enriches, and correlates community threat data to support analyst workflows and time to action. With 50M+ searchable indicators and threats collected from user submissions and feeds, the Pulsedive add-on delivers invaluable context wherever you work.
