Based on our record, Any.Run should be more popular than AbuseIPDB. It has been mentiond 33 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Https://app.any.run/ should be enough for most of the cases. If you have packed/encrypted sample (like EMP.dll from Empress), you can't do anything. Source: 10 months ago
If you open it on https://app.any.run it will show you the outbound connections it makes. If you're responsible for such things, you could then block this on your web proxy/firewall/whatever. Source: 11 months ago
Hello! Try this https://app.any.run/. Source: about 1 year ago
Does anyone have an account at app.any.run to have more analysis about their file? Source: about 1 year ago
App.any.run was probably the most useful thing in getting to understand how malware works, its basically an sandbox where it shows you all actions, changes, modifications and network connections done by any executable, including any malware, you can begin by analyzing this piece of Redline Stealer. Source: over 1 year ago
Origin server only shows Cloudflare IP's so I decided to add this UA to my WAF with a Managed Challenge. After roughly 30 minutes and almost 100 hits on it CSR was 0%. Looking at the CF logs for the specific WAF shows IP's and locations from everywhere(US, UK, India, China, Nigeria, etc) and when I check IP's at abuseipdb.com they're all clean but none of them seem to get through the managed challenge. I removed... Source: 8 months ago
Switched to Maspik Anti-Spam, with a manually curated list of keywords, and integration with abuseipdb.com and proxycheck.io. But both of those were also causing false positives, especially from my co-worker who uses a virtual machine, so upped the tolerance to 70 on both. Source: 12 months ago
This install of Docker is only a few days old. Most of the IPs associated are showing "banned" on abuseipdb.com. Source: 12 months ago
People build lists like OP is all the time, have you seen https://abuseipdb.com/? Source: almost 1 year ago
To keep your Synology safe, regularly update list of blocked ip addresses. I'm using this script, which takes list of ip addresses from blocklist.de and abuseipdb.com and add them to my block list. I keep them blocked forever. Source: about 1 year ago
Cuckoo Sandbox - Cuckoo Sandbox provides detailed analysis of any suspected malware to help protect you from online threats.
URLscan.io - urlscan.io is a free service to scan and analyse websites. When a URL is submitted to urlscan.io, an automated process will browse to the URL like a regular user and record the activity that this page navigation creates.
VirusTotal - VirusTotal is a free service that analyzes suspicious files and URLs and facilitates the quick...
Metadefender - Metadefender, by OPSWAT, allows you to quickly multi-scan your files for malware using 43 antivirus...
Joe Sandbox - Automated Malware Analysis - Development and Licensing of Automated Malware Analysis Tools to Fight Malware
Hybrid-Analysis.com - Hybrid-Analysis.com is a free malware analysis service powered by payload-security.com.