General Tools
- https://www.google.com/advanced_search
- https://text-compare.com
- https://jwt.ms (token decoder)
- https://regex101.com
- https://jsonparser.org
- http://web.archive.org
- https://login.microsoftonline.com/error (Microsoft error code lookup)
Email Investigation
- https://mha.azurewebsites.net (header analyzer)
- http://www.o365atp.com
- https://www.umsystem.edu/forms/safe-link-decoder
- https://mha.azurewebsites.net
- http://www.o365atp.com (safe links decoder)
- https://www.umsystem.edu/forms/safe-link-decoder
- https://decentsecurity.com/malware-web-and-phishing-investigation
- https://www.mailercheck.com/articles/how-to-read-and-understand-email-headers
- https://haveibeenpwned.com
- https://cybersecurity.att.com/blogs/security-essentials/how-hackers-manipulate-email-to-defraud-you-and-your-customers
- https://www.stellarinfo.com/article/email-header-structure-forensic-analysis.php
- https://blog.joshlemon.com.au/analysing-malicious-email-files
- https://emailrep.io
- https://openphish.com
Investigate URL’s
- https://www.ipqualityscore.com/free-ip-lookup-proxy-vpn-test
- https://db-ip.com (Geo – location)
- https://check-host.net
- https://www.ipqualityscore.com
- https://www.ipvoid.com
- https://whois.icann.org/en
- https://dnssec-analyzer.verisignlabs.com/
- https://ipinfo.io
- https://urlscan.io
- https://talosintelligence.com
- https://transparencyreport.google.com/safe-browsing/search
- https://sitereview.bluecoat.com
- https://checkphish.ai
- https://urlquery.net
- http://spyonweb.com
- https://www.shodan.io
- https://db-ip.com
Check Files
- https://www.virustotal.com/
- https://www.file.net/process/_g.html
- https://admx.help/HKLM/Software/Policies (Registry Key Search)
Vulnerability Check Tools
- http://nmap.online-domain-tools.com
- https://www.ssllabs.com/index.html (test certificate & configuration)
- https://www.rumble.run