CyberOps

Cybersecurity Frameworks & Standards

• NIST & MITRE Publications:

  • www.nist.gov/cyberframework

  • https://csrc.nist.gov/publications/sp800

  • https://csrc.nist.gov/publications/sp1800

  • https://cve.mitre.org

  • https://nvd.nist.gov

  • https://cwe.mitre.org

  • https://scap.nist.gov/specifications

  • https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf

  • https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-167.pdf

  • https://www.first.org/cvss/specification-document

  • https://www.first.org/standards/frameworks/csirts/csirt_services_framework_v2.1

  • www.first.org/standards/frameworks/psirts

  • https://csrc.nist.gov/publications/nistir/ir7502/nistir-7502_CCSS.pdf
    Key cybersecurity frameworks, standards, and guidelines from NIST and MITRE, including vulnerability databases and security assessments.

2. Threat Intelligence & Incident Response

• Threat Sharing Platforms:

  • http://veriscommunity.net

  • http://stixproject.github.io

  • http://taxiiproject.github.io

  • https://cyboxproject.github.io
    Platforms for sharing and analyzing cyber threat intelligence using structured formats like VERIS, STIX, and TAXII.

• Incident Response & Playbooks:

  • www.incidentresponse.com/playbooks

  • www.guidancesoftware.com

  • http://accessdata.com

  • https://github.com/vz-risk/veris

  • https://github.com/vz-risk/VCDB
    Resources for incident response, including playbooks and structured incident data analysis.

3. Vulnerability Databases & Exploits

• Vulnerability Databases:

  • www.exploit-db.com

  • www.shodan.io

  • https://attack.mitre.org

  • https://nvd.nist.gov

  • https://cve.mitre.org

  • www.defaultpassword.com

  • www.first.org/global/sigs/vulnerability-coordination

  • https://oval.mitre.org
    Databases of known vulnerabilities, default passwords, and exploit resources.

• Exploitation Tools & Techniques:

  • http://exploit-db.com/google-hacking-database

  • www.offensive-security.com/metasploit-unleashed

  • https://attack.mitre.org/software

  • https://github.com/The-Art-of-Hacking/h4cker
    Tools and databases for exploits, penetration testing, and ethical hacking.

4. Cloud & Network Security

• Cloud Security:

  • https://docs.aws.amazon.com/vpc/latest/userguide/flow-logs.html

  • https://cloud.google.com/vpc/docs/using-flow-logs

  • https://aws.amazon.com/compliance/shared-responsibility-model

  • https://cloudsecurityalliance.org/research/working-groups/top-threats
    Resources for cloud security, including AWS, Google Cloud, and security responsibilities.

• Network Security:

  • www.cisco.com/c/en/us/products/security/firewalls/index.html

  • https://talosintelligence.com

  • www.cisco.com/c/en/us/about/security/intelligence/security-for-ip-addr.html
    Cisco and Talos resources for network security, firewalls, and threat intelligence.

5. DevOps & Automation

• DevOps Tools:

  • https://kubernetes.io

  • www.nomadproject.io

  • https://mesos.apache.org

  • https://docs.docker.com
    Tools for container orchestration, microservices management, and deployment.

• Automation & Orchestration:

  • https://github.com/CrowdStrike/falcon-orchestrator

  • www.demisto.com

  • www.servicenow.com/products/security-operations.html
    Automation tools for security operations and workflow orchestration.

6. Cryptography & Security Protocols

• Cryptography Resources:

  • www.cisco.com/c/en/us/about/security-center/next-generation-cryptography.html

  • http://openpgp.org

  • https://openvpn.net

  • http://blogs.cisco.com/security/sha512-checksums-for-all-cisco-software

  • https://tools.cisco.com/security/center/resources/next_generation_cryptography
    Next-generation cryptography resources and tools for secure communication.

7. Open Source Security & Forensics

• Forensic Tools:

  • www.sleuthkit.org

  • https://cuckoosandbox.org

  • www.wireshark.org

  • https://github.com/aol/moloch

  • www.hex-rays.com/products/ida

  • www.radare.org
    Open-source tools for digital forensics and packet analysis.

• OSINT & Ethical Hacking:

  • https://github.com/The-Art-of-Hacking/h4cker/tree/master/osint

  • https://nmap.org
    Open-source intelligence and network scanning tools.

8. Security Scoring & Automation

• Vulnerability Scoring & Management:

  • http://scap.nist.gov

  • https://oval.mitre.org

  • https://github.com/robcowart/elastiflow
    Vulnerability management, scoring, and threat flow analysis tools.

9. Containers & Orchestration

• Container Tools:

  • https://docs.docker.com/engine/swarm

  • https://katacoda.com/courses/container-runtimes/what-is-a-container-image
    Container management and orchestration tools like Docker Swarm.

10. Security Automation & Orchestration

• Threat Detection & Response:

  • https://github.com/bestpractical/rt

  • https://github.com/DefensePointSecurity/threat_note

  • www.cyphon.io

  • www.elastic.co/downloads/kibana
    Threat detection, response tools, and Kibana visualization tools for monitoring logs.

11. Miscellaneous

• General Resources:

  • www.w3.org/TR/soap

  • https://swagger.io

  • www.w3.org/Submission/wadl
    General web API resources for web services and documentation.

• Training & Learning Resources:

  • www.youtube.com/watch?v=1S0aBV-Waeo

  • www.kali.training

  • www.magnetforensics.com/resources/magnet-acquire
    Training resources for cybersecurity and forensics tools.