Search
abuse.ch SSL Blacklist icon

abuse.ch SSL Blacklist

SSL/TLS certificate fingerprint blacklist

FreeWebAPI
Visit WebsiteDocs

Description

SSLBL is the abuse.ch project that collects SHA1 fingerprints of TLS certificates used by malware botnets and ships an IP blacklist, JA3 list, and CSV feeds. It is a primary IOC source for Cobalt Strike, AsyncRAT, and similar tooling.

Inputs

Hash (MD5/SHA)IP AddressSSL Certificate

Outputs

IOC (Indicator of Compromise)SSL Certificate

Tags

IOC (Indicator of Compromise)

Tool Chain

Tools that can use this tool's outputs as inputs

abuse.ch SSL Blacklist
outputs
IOC (Indicator of Compromise)
inputs into
MISPFreeOpenCTIFreeYetiFreeMITRE ATT&CKFreeTheHiveFreemiumCortexFreemiumAbuseIPDBFreemiumAlienVault OTXFreePulsediveFreemiumThreatFoxFreeFeodo TrackerFreePhishTankFreeOpenPhishFreemiumCisco Talos IntelligenceFreeIBM X-Force ExchangeFreemiumCyberChefFreeGoogle Safe BrowsingFreemiumMalwarebytes LabsFreeOpenIOC EditorFreeCyberbroFree
abuse.ch SSL Blacklist
outputs
SSL Certificate
inputs into
Sectigo Certificate SearchFreemiumHunt.ioFreemiumSilent PushPaidValidinFreemiumNetlas.ioFreemium

Reviews

0.0 (0 reviews)