Hi everyone. I would like to share some of my favourite resources for checking IP reputation and passive reconnaissance as part of my OSINT investigation.
- Broadcom – simple IP address reputation check.
- IPQualityScore - another simple IP address reputation check tool which is based on leading IP address intelligence. It is also able to verify if the IP address is associated with spam, botnet activity and also fraud based on its fraud score.
- Centralops – multi-purpose tool with the domain dossier lookup functionality. Limited to 50 queries per day.
- IP Info – detailed IP lookup, including IP address type (VPN, proxy, relay, etc.).
- ShowMyIP – bulk IP address lookup, allows lookup up to 100 IPs at the same time. IP search results can be downloaded in .csv format.
- IP Void – multipurpose IP search tool which allows lookups against several basic and advanced criteria (traceroute, website location, IP geolocation, port scanner, etc).
- MX Toolbox – another multipurpose tool that allows queries by domain name, IP address or host
name. It allows conducting IP reputation checks as well.
- Threatminer – a threat intelligence portal that is also used in the SANS FOR578 Cyber Threat Intelligence course.
- Virus Total – useful for checking IPs and URLs. Primarily serve as a static analysis sandbox designed for examining suspicious files, with strong capabilities to analyze URLs and IP addresses.
Stay tuned for the next blog post :-)
Post a Comment
0Comments