CYBERSECURITY

Global issues

IETF

• IETF - including Best Current Practices on Internet security such as DDOS
• IETF - including Best Current Practices on Internet security such as DNS Amplification

MITRE

• US MITRE STIX - a standardized language to represent structured cyber threat information
• US MITRE TAXII - the main transport mechanism for cyber threat information represented as STIX

NIST

• US NIST Cyberframework

Research

• EU ACDC project
  
• RHUL - Cyber security - Centre for Doctoral Training
• RAND Europe - Cyber - Neil Robinson
  
• DE/UK - Stephen Wolthusen - Fraunhofer, RHUL, NATO,... - SCADA
• NL/TNO - Rob Kooij
  

Government and regulation

• International Convention on Cybercrime - the "Budapest Convention" of 2001
  
• US - DHS
• US - CyberCom.mil
  
• Europol EC3 - European Cyber Crime Centre
• DE - German Cybersecurity Centre NCAZ
• NL - National Cyber Security Centre (Ministries of Security and Justice)
• NL - Nationale Coordinator Terrorisme en Veiligheid
  See ENISA overviews of cybersecurity initiatives worldwide.
  
• UK - Bank of England - CBEST
• UK - CREST -
  

Education

• UK - GCHQ quality perspective
• UK - Lancaster
• NL - Den Haag - Cyber Security Academy
• DE - Cyberakademie.de

High level

• Nato centre for cybersecurity in Estland - free books and articles
• US DC3 - including CyberChallenge
  
• ICSPA.org - Internet Cyber Security Protection Alliance (founded by VISA, EADS, ...)
• US - ICS CERT for SCADA and ICS
• SCADAhacker.com
• Shodan - SCADA search engine
• exploit-db.com - including metasploit code
  
• DE - Internet-sicherheit.de - Norbert Pohlman (Teletrust)
  
• IL - IDF Unit 8200 Yehida Shmoneh-Matayim
• IL - Internet-Haganah
• IL - EISP 8200-entrepreneurs
  
• IR - Dublin's Cybercrime centre - Cheryl Baker - open source forensics tools
  
• Securityfocus.com - home of Bugtraq (today part of Symantic)
  
• milw0rm.com - including papers
  
• NoStarch.com - books on Metasploit, IDApro, malware, ...
• Zone-h.org - news
• Pastebin (for anonymous posting)
• Blapkmarket.com
  
• Social Engineer
• CVE.mitre.org - common vulnerability database
• osvdb - open source vulnerability database
  
• Fighting the DNS changer
• DNSviz - Sandia Labs (DNSSEC)
• Security Spider (DNSSEC)
• US - Team Cymru (not for profit)
  
• US - Georgia Weidman - Smartphone Pentesting Framework now in BackTrack
  
• ICT regulation toolkit for telecom (ITU)

Solution providers

• US - Confer - implementing MITRE's Avalanche
• CRITS - OpenSource version
  
• US - McAffee
• US - McAffee/Foundstone ... tooling ... services
• US - Symantec
  
• DE - ACS - Allianz fuer Cybersicherheit
  
• IL - CyberARM - Decision Support System - Intelligence gathering - Shay Zandani - Gerard Sabbah
• IL - CyberArk - PIM
• IL - LightCyber - Magma appliance - suggestion YB/SS
• IL - Cyvera - exploitation techniques over exploits - suggestion YB/SS - son of YD
  
• Solera Networks - big data analysis
• BlueCoat
• FortiNet - Fortigate
• GFI.com - including online malware analysis tool (formerly CWSandbox)
• Invincea - from microVM to secure containers - OEM'd by Dell
• FireEye
• US - Co3 Systems
• US - Cyberoam - UTM - Unified Threat Management
• CrowdStrike - with good blog
• gmer rootkit analyser
• US Mandiant
• US iSight
• US Trusteer - a.o. secure browser
• Arbor networks - including @ isp level
• US Narus - a Boeing company
• Q1 labs
• US Raytheon
  
• EE - ClarifiedSecurity (delivers to NATO Cybersec competence centre in EE)
  
• ES - S21SEC
  
• CH - EISST - hardened browsers/servers etc
  
• DE - Sirrix - sandboxing the browser
• DE - BFK - Intelligence and consulting
  
• IL - Versafe - anti-phising, anti-pharming, ...
• US/IL - Actimize - fraud, AML, ...
  
• FR - LEXSI
• Korea - Ahnlab - founded as antivirus in 1995
• CZ - Cognitive Security (bought by CISCO)
• FI - F-secure.com, originally established as Data Fellows in Helsinki in 1988
• FI - fitsec.com - including memory malware detection

Visualisation

• Deutsche Telekom's Sicherheitstach - global dashboard based on honeypots
• Raffy.ch
• SecViz.org - including DAVIX (linux distro)

Information and threat exchange

• Cymon.io
• Alienvault
• IBM Xforce
• datalossdb - open source dataloss database
• incidents.org - by SANS
• exploit-db.org
  
• VERIS framework - Verizon (community version exists too)
• US - Team Cymru
  
• Hackmageddon - overview of cyberattacks
  

CERTs - see also ENISA

CERTs - large scale

• EU CERT of the Institutions
• US First incident response
• US First incident response

CERTs - country-level

Tools

• Abusehelper
• UrlVoid.com - url scanner for malware

Belgian focus

• B-C Centre (started in Kortrijk, today rooted in K.U. Leuven)
• Federal ecops /FCCU

Conferences

• Defcon
• Blackhat
• Ethicalhacker.net

TOR and I2P

• HiddenWiki
• HiddenWiki mirror
  
• I2P on Twitter

Anonymous - Telecomix

• Telecomix.org
  
• Webchat Anonops, use eg #OpDefense
  
• Anoncentral - Anonymous
• Anonymous.org
• Anonserv - Anonymous Services
• Anonnews - Anonymous News
• AnonBlogspot
• Anonnews - Anonymous News
  

Malware

Analysis

• US - NIST MAEC - Malware Analysis
• HU - Budapest University of Technology - CrySys Lab - Duqu detection - FP6 - FP7
  
• Xylibox
• Xylibox blogspot

Fighting botnets etc

• DE - Botfrei.de - includes DE-Cleaner - cleaning CD also available - Avira DE-Cleaner
• DE - cleaners for winlocker/ransomware
• DE - eco.de - Verband der deutschen Internetwirtschaft
  
• DE - Clean-MX
• ShadowServer - counting botnets and their C&C's
• SpyEye tracker
• DNS Changer Workgroup
• Zeus tracker
• Anubis online malware analysis
• US - ArborNetworks - DDOS
  
• Malware blacklist
• Spamhouse

Virus and vulnerabilities

• Virustotal - online scanning of your file
  
• Anti-malware - Eddy Willems
• EICAR - European Institute for Computer Anti-virus Research
  
• Kapersky
• US - Symantec
• NO - Norman Security Solutions - anti-virus, risk-analysis,...
  
• GRC - 'shields up' service - scanning of your PC over the network
  
• US - Foundstone - McAfee
• SE - Secunia - including online scanner, suggested by CERT.AE

Forensics

General

• Fordrop - forensics dropbox

Mobile devices

• Fordrop - forensics dropbox

Other

Honeypots

• Honeynet Project - luring blackhatters