分析工具

域名与IP检测

• https://centralops.net/co/DomainDossier.aspx?dom_whois=1&net_whois=1&dom_dns=1

• https://www.threatcrowd.org/

• https://www.threatminer.org/

• https://www.virustotal.com/en/

• https://www.talosintelligence.com/

• https://login.opendns.com/

• https://www.alexa.com/siteinfo

• https://x.threatbook.cn/en

• https://checkphish.ai/domain/avfisher.win

URL检测

• https://urlscan.io/

• https://sitecheck.sucuri.net/results/pool.cortins.tk

• https://quttera.com/

• https://www.virustotal.com/en/

• https://checkphish.ai/

TOR节点检测工具

• https://www.dan.me.uk/torcheck

• https://exonerator.torproject.org/

• https://ipduh.com/ip/tor-exit/

• https://torstatus.blutmagie.de/

在线恶意程序或文档检测工具

• https://www.virustotal.com/en/

• https://malwr.com/

• http://camas.comodo.com/

• https://x.threatbook.cn/en

• https://www.reverse.it/

• http://www.threatexpert.com/submit.aspx

• https://www.vicheck.ca/

• https://virusshare.com/

• https://malshare.com/

• https://github.com/ytisf/theZoo

动态恶意程序或文档分析工具

• Cuckoo

• Regshot

• Process Hacker

• Process Monitor

• ProcDOT

• WinDump

• Graphviz

• [Capture-BAT](https://www.honeynet.org/node/315 (x86 environment only))

• Fakenet

• Wireshark

邮件检测工具

• http://spf.myisp.ch/