project
Publicly Available Security Data Sets
https://www.unb.ca/cic/datasets/index.html (contains a long list of links to data sets)
http://www.secrepo.com/ (contains a long list of links to data sets)
https://digitalcorpora.org/corpora/cell-phones
Comprehensive, Multi-Source Cyber-Security Events
· data: https://csr.lanl.gov/data/
· data structure: https://csr.lanl.gov/data/cyber1/
Unified Network and Host Event Data, Nov 2018
· Data and data definition: https://csr.lanl.gov/data/2017/
Scenarios (for forensic analysis): https://digitalcorpora.org/corpora/scenarios
· Scenarios are collections of multiple disk images, memory dumps, network traffic, and/or data from portable devices. There are currently 5.
· https://digitalcorpora.org/corpora/scenarios/2018-lone-wolf-scenario
· The 2018 Lone Wolf scenario is a set of materials from the a fictional seizure of a laptop of a fictional individual who was planning a mass shooting. In the scenario, the individual’s brother alerted the police regarding the increasingly concerning behavior of his brother. As a result of the alert, the police seized the brother’s laptop. The laptop was then imaged with the FTK Imager program.
· https://digitalcorpora.org/corpora/scenarios/obtaining-solutions
· The Lone Wolf scenario uses FTK Imager
· Software download: https://accessdata.com/product-download/ftk-imager-version-4-5
· Tutorial: https://eforensicsmag.com/how-to-investigate-files-with-ftk-imager/
Tutorials (read!): https://eforensicsmag.com/downloads/free/ (register free acct)
· https://eforensicsmag.com/download/preview-set-your-osint-environment/
· https://eforensicsmag.com/download/preview-unveiling-the-hidden-content-on-youtube/
· see article on OSINT on Video Conferencing Applications
· https://eforensicsmag.com/download/preview-nmap-metasploit-netcat/
· https://eforensicsmag.com/download/preview-different-approaches-to-memory-forensics/
· https://eforensicsmag.com/download/all-in-one-digital-forensics-tutorial-compilation/
· https://eforensicsmag.com/category/free-course-content/
· https://eforensicsmag.com/shodan-in-the-cli-free-course-video/
· https://eforensicsmag.com/security-onion-deployment-scenarios-free-course-video/ https://eforensicsmag.com/android-forensics-challenge-free-course-content/ (I downloaded the data; need to print this page w/challenge)
· https://eforensicsmag.com/android-malware-analysis-tools-free-course-video/
· https://eforensicsmag.com/thunderbird-artifacts-free-course-content/
https://santoku-linux.com/ (free, open source mobile security testing tool)
https://www.netresec.com/index.ashx?page=PcapFiles (contains a list of pcap data sets, including labs)
https://vizsec.org/data/ (contains a long list of links to data sets)
https://github.com/hgascon/security-datasets (honeypot; network traffic; malware; CTF)
Data-Driven Security book that I own. Here are their datasets:
· https://datadrivensecurity.info/blog/pages/dds-dataset-collection.html (honeypot & malware)
· https://datadrivensecurity.info/blog/posts/2014/Jan/blander-part1/
Online ebooks: https://datadrivensecurity.info/blog/pages/resources.html
Intrusion Detection system data containing 9 different attack types:
https://www.unsw.adfa.edu.au/unsw-canberra-cyber/cybersecurity/ADFA-NB15-Datasets/
Wireshark tutorials:
https://www.varonis.com/blog/how-to-use-wireshark/
https://hackonology.com/courses/kali-linux/lesson/wireshark-a-complete-tutorial/
https://www.hackingarticles.in/understanding-guide-icmp-protocol-wireshark/
https://www.hackers-arise.com/post/2018/09/24/network-forensics-wireshark-basics-part-1
https://jerrybanfield.com/sniffing-netsniff-ng-wireshark-ettercap/
https://learn.sparkfun.com/tutorials/hexadecimal/all
https://hackertarget.com/wireshark-tutorial-and-cheat-sheet/