Home / Threat Defense / Threat Management / Combine
Combine

Combine

Pricing: Free
Write a Review Visit Website
Combine

What is Combine

Packet Storm is a global security resource providing around-the-clock information and tools to mitigate personal data and fiscal loss on a global scale.

Combine Gathers Threat Intelligence Feeds from Public Sources

Combine gathers Threat Intelligence Feeds from publicly available sources. You can execute the core tool using combine.py with the following command: - usage: combine.py [-h] [-t TYPE] [-f FILE] [-d] [-e] [--tiq-test] - optional arguments: -h, --help Show this help message and exit. -t TYPE, --type TYPE Specify the output type. Currently supported types are: CSV and exporting to CRITs. -f FILE, --file FILE Specify the output file. The default is harvest.FILETYPE. -d, --delete Delete intermediate files. -e, --enrich Enrich the data. --tiq-test Output in tiq-test format (this option implies -e). Alternatively, you can run each phase of the process individually by executing the following commands: - python reaper.py - python thresher.py - python winnower.py - python baler.py

The output will actually be a CSV file with a defined schema

The output will actually be a CSV file that follows this specific schema: - entity, type, direction, source, notes, date

The entity field includes...

The entity field includes a Fully Qualified Domain Name (FQDN) or an IPv4 address. These are the supported entities at this time.

The type field consists of FQDN or IPv4

The type field can either be an FQDN (Fully Qualified Domain Name) or an IPv4 address. This classification helps identify the type of the entity.

Understanding the Direction Field

The direction field will be classified as either inbound or outbound.

The source field includes the original URL

The source field includes the original URL.

The notes field should encompass additional tag information

The notes field should include any additional tag information that we may wish to retain alongside the data.

The date field must follow the YYYY-MM-DD format

All fields should be enclosed in double quotes (" ").
 

Combine Reviews

Write a Review

No reviews yet. Be the first to review this tool!

Write a Review

Share your experience with Combine tool and help others make informed decisions.

Similar Tools

View All Threat Defense
Vectra AI
Free
Threat Management

Vectra AI View Vectra AI

Vectra threat detection & response - see and stop threats across hybrid and multi-cloud enterprises. Vectra uses AI to detect threats early and accurately across hybrid and multi-cloud attack surfaces. The Vectra threat detection & response platform captures packets and logs across your public cloud, SaaS, federated identity and data center networks. It applies patented security-led AI to surface, and prioritize threats and integrates into your security stack for rapid response. The Vectra Platform extracts hundreds of metadata elements from captured data and applies security-led AI to detect attacker methods in every domain. This gets attributed to relevant accounts or hosts to prioritize the entities and provide a unified view of threats across your hybrid and multi-cloud environment.

QFunction
Free
Threat Management

QFunction View QFunction

QFunction revolutionizes cybersecurity by leveraging cutting-edge AI and machine learning to identify anomalies and threats within your existing data. Designed for medium-sized businesses and CISO's, QFunction augments your current security stack, empowering you to proactively hunt for threats by distinguishing unusual patterns rather than relying on pre-defined signatures. This approach reduces noise, enhances threat detection, and enables you to identify and neutralize attacks before they escalate, without the need for additional, disparate security tools.

AI/ML-driven anomaly detection
Augments existing security stack
Proactive threat hunting
PolySwarm
Free
Threat Management

PolySwarm View PolySwarm

PolySwarm is a cutting-edge, crowdsourced threat intelligence marketplace designed to empower organizations with faster, more accurate detection, analysis, and response to emerging cyber threats. By aggregating a diverse network of specialized and general threat detection engines, PolySwarm uncovers previously undetected and rare malware, filling critical gaps in traditional security defenses and providing superior protection against the evolving threat landscape.

Crowdsourced Threat Intelligence Marketplace
Next-Generation Malware Detection
Specialized and Broad Engine Coverage
Pixm
Free
Threat Management

Pixm View Pixm

Pixm revolutionizes phishing defense by employing state-of-the-art computer vision to analyze web pages from a human perspective, effectively identifying deceptive elements that traditional security tools often overlook. This AI-powered solution, designed for everyday users and backed by ManageEngine's commitment to flexible business solutions, provides unparalleled protection against the most prevalent cyber threats.

Computer Vision Analysis
Human-like Visual Scanning
Deceptive Element Detection
Packet Storm
Free
Threat Management

Packet Storm View Packet Storm

Packet Storm is a comprehensive threat intelligence feed dedicated to empowering the information security industry with critical vulnerability data and free tooling. We provide timely and relevant details for seasoned professionals while offering foundational insights into emerging threats and exploitation methods for those new to the field. Our mission is to equip security professionals with the extensive data necessary to make informed decisions for robust domain protection.

Real-time vulnerability data feed
Extensive collection of security advisories
Free security tooling and resources
Mitre ATT&CK
Free
Threat Management

Mitre ATT&CK View Mitre ATT&CK

MITRE ATT&CK™ is a globally recognized, empirically-based knowledge base detailing adversary tactics and techniques observed in real-world cyberattacks. It serves as a foundational framework for developing robust threat models, defensive strategies, and cybersecurity solutions across various sectors, including private industry, government, and the cybersecurity product and service community. By fostering collaboration and providing open access, ATT&CK empowers organizations to enhance their cybersecurity posture and build a safer digital world.

Comprehensive knowledge base of adversary tactics and techniques
Based on real-world observations and cyberattack data
Enables development of threat models and defensive strategies