Intelligence Toolkit

A curated collection of essential tools, frameworks, and platforms for cyber intelligence and OSINT practitioners. These resources are foundational for effective threat analysis and investigation.

Infrastructure Analysis

Network Reconnaissance

  • Nmap: The industry standard for network discovery and security auditing.
  • Shodan: A search engine for Internet-connected devices, providing deep insights into exposed infrastructure.
  • Wireshark: The world's foremost network protocol analyzer for deep packet inspection.
OSINT Frameworks

Investigation Platforms

  • Maltego: A powerful tool for link analysis and data mining, ideal for mapping relationships.
  • SpiderFoot: An automation tool for OSINT that integrates with over 100 public data sources.
  • OSINT Framework: A comprehensive directory of OSINT resources categorized by data type.
Threat Frameworks

Taxonomy & Modeling

  • MITRE ATT&CK: A globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.
  • Diamond Model: A framework for analyzing cyber intrusions by mapping the relationships between adversaries and victims.
  • Cyber Kill Chain: Developed by Lockheed Martin to identify and prevent the stages of a cyber attack.

Continuous Learning

Stay ahead of the curve with these recommended learning platforms and communities.

SANS Institute

Advanced training and certification.

Bellingcat

Pioneering OSINT investigative techniques.

OWASP

The foundation for web application security.