NOVA/NVCC/VCCS

• myNOVA
• Canvas
• SIS
• Webmail
• VirtualStudent
• VCCS Class Search
• VCCS Virtual Computing Lab

Blogs

• Krebs on Security
• FireEye Blogs
• McAfee Labs
• Sophos Naked Security
• Kaspersky Lab Threatpost
• ATLAS Global Dashboard
• Trend Micro Security Intelligence
• F-Secure Weblog
• Websense Security Labs
• M-Unition
• Graham Cluley
• Lenny Zeltser
• Daniel Miessler
• Didier Stevens
• Eric Zimmerman
• KitPloit – PenTest Tools for your Security ArsenalKitPloit
• MalwareTech

Cheat Sheets

• Packet Life Cheat Sheets
• Lenny Zeltser Cheat Sheets
• Cheat-Sheets.org
• SANS Pen Testing Cheat Sheets
• SANS Digital Forensics Cheat Sheets
• Font Awesome Cheat Sheet
• Excel Cheat Sheet
• Word Cheat Sheet
• PowerPoint Cheat Sheet
• Windows 7 Cheat Sheet
• Windows 10 Cheat Sheet

Online Tools

Online Tools for Looking up Potentially Malicious Websites

• AVG LinkScanner Drop Zone: Analyzes the URL in real time for threats
• BrightCloud URL/IP Lookup: Presents historical reputation data about the website
• Comodo Web Inspector: Examines the URL in real-time
• Cisco SenderBase: Presents historical reputation data about the website
• Cyscon SIRT: Provides historical data for IP addresses, domains and ASNs.
• Deepviz: Offers historical threat intel data about IPs, domains, etc.
• FortiGuard lookup: Displays the URL’s history and category
• Is It Hacked: Performs several of its own checks of the URL in real time and consults some blacklists
• IsItPhishing: Assesses the specified URL in real-time
• KnownSec: Presents historical reputation data about the website; Chinese language only
• Norton Safe Web: Presents historical reputation data about the website
• PhishTank: Looks up the URL in its database of known phishing websites
• Malware Domain List: Looks up recently-reported malicious websites
• MalwareURL: Looks up the URL in its historical list of malicious websites
• McAfee Site Advisor: Presents historical reputation data about the website
• McAfee TrustedSource: Presents historical reputation data about the website
• MxToolbox: Queries multiple reputational sources for information about the IP or domain
• NoDistribute: Online Virus Scanner Without Result Distribution
• Quttera ThreatSign: Scans the specified URL for the presence of malware
• Reputation Authority: Shows reputational data on specified domain or IP address
• Sucuri SiteCheck: Scans the URL for malware in real time and looks it up in several blacklists
• Trend Micro Web Reputation: Presents historical reputation data about the website
• Unmask Parasites: Looks up the URL in the Google Safe Browsing database
• URL Blacklist: Looks up the URL in its database of suspicious sites
• URL Query: Looks up the URL in its database of suspicious sites and examines the site’s content
• URLVoid and IPVoid: Looks up the URL or IP in several blacklisting services
• VirusTotal: Looks up the URL in several databases of malicious sites
• vURL: Retrieves and displays the source code of the page; looks up its status in several blocklists
• WebPulse Site Review: Looks up the website in BlueCoat’s database
• Wepawet: Analyzes the URL in real time for threats
• Zscaler Zulu URL Risk Analyzer: Examines the URL using real-time and historical techniques

Automated Malware Analysis Sandboxes and Services

• Akana (Android files)
• Anubis
• BitBlaze Malware Analysis Service
• CAPE Sandbox
• Comodo Automated Analysis System and Valkyrie
• Deepviz Malware Analyzer
• EUREKA Malware Analysis Internet Service
• ID Ransomware
• Joe Sandbox Document Analyzer (PDF, RTF and MS Office files)
• Malwr (also see MalwareViz)
• MASTIFF Online (static analysis of various file types)
• VxStream Sandbox (Hybrid Analysis)
• ThreatExpert
• ThreatTrack
• ViCheck
• VisualThreat (Android files)
• XecScan (PDF and MS Office files from targeted attacks)

Blocklists of Suspected Malicious IPs and URLs

• ATLAS from Arbor Networks: Free; registration required by contacting Arbor
• BLADE Malicious URL Analysis: A free auto-generated list of URLs recently identified as malicious
• CLEAN-MX Realtime Database: Free; XML output available
• CriticalStack Intel Marketplace: Free; registration required; optimized for Bro
• CYMRU Bogon List: Free
• DGA List: Free
• DShield Blocklist: Free
• EmergingThreats Lists: Free; includes Known Compromised Host List and Control Server Rules
• FireHOL IP Lists: Free; combines several blacklists from other sources
• Google Safe Browsing API: Free; programmatic access; restrictions apply
• hpHosts File: Free; limited automation on request
• Malc0de Database: Free
• Malware Domain Blocklist: Free for non-commercial use
• Malware-Control Blacklist: Commercial service; free licensing options available
• MalwareDomainList.com Hosts List: Free
• Malware Patrol’s Malware Block Lists: Free for non-commercial use
• MalwareURL List: Commercial service; free licensing options may be available
• OpenPhish: Phishing sites; free for non-commercial use
• ParetoLogic URL Clearing House: Free for non-commerical use; registration required
• PhishTank Phish Archive: Free; query database via API
• Project Honey Pot’s Directory of Malicious IPs: Free; registration required to view more than 25 IPs
• Scumware.org: Free
• Shadowserver IP and URL Reports: Free; registration and approval required
• Sourcefire Vulnerability Research: Free
• Squidblacklist.org: Paid and free options available
• SRI Threat Intelligence Lists: Free; re-distribution prohibited
• Sucuri Blacklists: Free; blacklists of sites hosting malware and of IPs scanning networks
• ThreatStop: Paid; free trial available
• URL Blacklist: Paid; first download free
• ZeuS Tracker Blocklist and URLs: Free
• www.BlockList.de: Free

Virtualization

• Microsoft Virtual Machines
• Kali Linux Virtual Machines

Visualizations

• FireEye Cyber Threat Map
• Kaspersky Cyberthreat Map
• Norse Attack Map
• CheckPoint  Cyber Threat Map
• Digital Attack Map
• ThreatMetrix CyberCrime Threat Map
• Kona Security Dashboard
• KnowBe4 PhishER Threat Map
• Akamai GNET
• Akamai Real-time Web Monitor
• Trend Micro Global Botnet Map
• Ransomware Attacks Map
• Deteque Botnet Threats
• MalwareViz
• Submarine Cable Map

Cyber Training

• Samsclass
• Cybrary
• Exploit.Education
• freeCodeCamp
• Hacker01
• PentesterLab Exercises
• PentesterAcademy Challenges
• LearnPython.org
• LearnSplunk.com
• ComputerSecurityStudents (CSS)
• Palo Alto Networks Cybersecurity Academy
• LinkedIn Learning (Lynda.com)
  • Arlington County – https://www.lynda.com/portal/patron?org=library.arlingtonva.us
  • Fairfax county – https://www.lynda.com/portal/sip?org=fairfaxcounty.gov
  • Loudoun County – https://www.lynda.com/portal/sip?org=library.loudoun.gov
  • Prince William County – https://www.lynda.com/portal/sip?org=library.pwcgov.org
  • Stafford County/Central Rappahannock Regional Library – https://www.lynda.com/portal/sip?org=librarypoint.org
• Youtube University
  • CISSP Shon Harris
  • Professor Messer’s SY0-501 Security+ Training Course
• XSS Game
• NSA CryptoChallenge

Sample Data

• SecRepo.com – Samples of Security Related Data

Sample Reports

• Cyber Hygiene: Vulnerability Scanning
• Risk and Vulnerability Assessment: Penetration Testing
• Phishing Campaign Assessment

Capture The Flag

• Exploit-DB – Exploits, Shellcode, Security Papers
• SA-ctf_scoreboard – A capture the flag scoreboard app for Splunk
• Sploitus – Exploits & Tools Search Engine
• Vulmon – The Ultimate Vulnerability Search Engine

Miscellaneous

• Canva
• Credly
• Badge Creator: Build Your Custom Badge
• Bannersnack: Online Banner Maker, Design & Create banners
• Pixabay: Free images
• Dreamstime – Stock Photos & Royalty Free Photos
• Freepik: Free Vectors, Photos and PSD Downloads
• PNGkey: Free Transparent PNG Images, Unlimited Download
• KissPNG: HD png images and illustrations. Free unlimited download.
• Unblast: Selective Free Design Resources to Download
• Unsplash: Beautiful Free Images & Pictures
• Everystockphoto: A search engine that searches several different free stock photo websites
• Freerangestock: Offers thousands of photos that can be downloaded for free
• Opensource.com
• IPFire: The Open Source Firewall
• OPNsense: Open Source Firewall
• XCP-ng: An open source alternative to XenServer
• XigmaNAS: The Free Network Attached Storage Project
• morgueFile: Offers thousands of photos that can be downloaded for free
• rgbstock: Offers thousands of photos that can be downloaded for free
• The Tech Terms Computer Dictionary
• Comman Craft: Videos to introduce and explain complex subjects
• SANS Information Security Resources
• CAE Tech Talk: National Centers of Academic Excellence
• Font Awesome: The iconic font and CSS toolkit
• FOSSwire: Free and open-source software news
• Pixlr Editor: Online Photo Editor
• Photopea: Online Photo Editor
• Fakespot: Analyze and identify fake reviews
• MITR ATT&CK: a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations.
• Transparent California: California’s largest public pay and pension database
• DefenseStorm: a network security system for financial institutions
• Countdown
  • https://timer.plus/
  • https://www.tickcounter.com/
  • https://countingdownto.com/