Cavalier™ — For Threat Intelligence Professionals.
Are you a security professional charged with bolstering platform integrity and defending against Account Take Over (ATO), Ransomware Attacks & Corporate Espionage?
With Cavalier™ you will be immediately notified about Compromised Credentials belonging to your Employees, Customers, Users & Vendors.
Cavalier™ Includes: - Compromised Employees - Compromised Customers & Users - Compromised Supply Chain - Compromised Android Users - Compromised Leaked Database - Compromised CXO’s & Family Members
Bayonet™ — For Cybersecurity Sales Teams & MSSPs
Are you a sales professional selling products and services in the cybersecurity space looking for more leads and prospects?
With Bayonet™ you get access to hundreds of thousands of compromised companies around the world with active vulnerabilities that you can convert into customers.
Bayonet™ Includes: - Search for Prospects by Name - Search by Geography - Search by Industry - Search for Prospects by Login Infrastructure - Granular Supply Chain Risk Assessments - Compromised Credentials
No features have been listed yet.
No Mozilla Observatory videos yet. You could help us improve this page by suggesting one.
Hudson Rock's answer:
Many cybercrime intelligence intelligence platforms aggregate data from publicly available database leaks, whereas Hudson Rock does not pursue generally available credentials as its main goal. Publicly available databases enable finding old or unrelated credentials by the same user, leaving the hacker to check if they were reused in other, more sensitive services that they’re trying to access. We consider this information to be less valuable, for several reasons:
Hudson Rock's answer:
Every credential presented in Cavalier was stolen directly from the browsers of victims who had a stealer type malware executed on their machine. These malwares are spread by tricking a victim to download a malicious file through various methods. the attacks are usually performed by threat actors in global opportunistic campaigns, with little discretion, so employees in companies that aren't even targeted often have their corporate credentials stolen.
Hudson Rock acquires and purchases compromised information directly from top-tier threat actors, and closed circle hacking groups. What sets this information apart, is its low availability in other high-fidelity threat intelligence companies, and its high accessibility to hacker groups looking for potential targets. Our operational knowhow, and our boots-on-the-ground approach to cybercrime comes from the IDF's 8200 Cybercrime division, and its efforts to thwart nation-state adversaries and professional threat actors.
Hudson Rock's answer:
Rapid7, Etoro, BNP Paribas, Playtech, Five9, BlueVine
Based on our record, Mozilla Observatory seems to be more popular. It has been mentiond 32 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Mozilla Observatory — Find and fix security vulnerabilities in your site. - Source: dev.to / 5 months ago
Detectify once made an offer of making free scans which I took them up on. There are plenty of free Content Security Policy (CSP) and other vulnerability checkers around such as Observatory or Pentest. Shields UP!! Will identify which ports you have open. Source: 7 months ago
Scan our site with Mozilla Observatory and improve our grade by registering a domain name, enabling HTTPS, adding a certificate and setting security headers. - Source: dev.to / over 1 year ago
First, for session persistence, go with the default Django session with cookie storage. Set your cookie to HTTP only and ensure your application uses the most common HTTP security headers and controls. Test your application with https://observatory.mozilla.org/ to have an idea of what you're missing. Source: over 1 year ago
Rank your site on https://observatory.mozilla.org/ and it will give you some suggestions. Source: over 1 year ago
Security Headers - Quickly and easily assess the security of your HTTP response headers.
SpyCloud - SpyCloud offers solutions for breach detection and prevention.
Qualys SSL Server Test - This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.
Recorded Future - Recorded Future provides organizations with real-time threat intelligence.
Hardenize - Hardenize provides a comprehensive and free assessment of web site network and security configuration.
ReliaQuest - Increase visibility, reduce complexity, and manage risk across your existing tools with comprehensive protection unified under a single security operations platform.