ThreatCrowd
By ThreatCrowd.org

ThreatCrowd Transforms for Maltego
Threat Crowd is part of an open Threat Intelligence community which permits global collaboration and sharing of cyber threats. Users share IP addresses or websites from which attacks have originated, or, look up specific threats to see if anyone in the intelligence community has provided information about them and determined them to be malicious.
Query ThreatCrowd for Malware, Passive DNS and historical Whois data.
Benefits
-
Enrich domains and IPs to historical dns resolutions and connecting malware
-
Enrich MD5 hashes of malware to command and control domains and IP addresses
-
Enrich the names of malware detections to the MD5 hashes of malware samples
Typical users of this data
- Threat Intelligence Teams
Pricing & Access
Pricing Tier: Free
Hub Type: Commercial Hub
Requirements: Maltego One, Classic or XL license
Access: Install directly from Transform Hub on Maltego Desktop Client
Contact
Reach out to us to learn more about this data integration and how to access it.
About ThreatCrowd
Threat Crowd is part of an open Threat Intelligence community which permits global collaboration and sharing of cyber threats. Users share IP addresses or websites from which attacks have originated, or, look up specific threats to see if anyone in the intelligence community has provided information about them and determined them to be malicious.
For more information, visit: https://www.threatcrowd.org/.
