• Skip to main content
  • Skip to secondary menu
  • Skip to footer

Domain Market Research

there is no brand name like a domain name

  • About
    • Domain investing vs domain development
  • 1 Word Domains
  • 3 Letter Domain Names
    • 4 letter domain names
    • 5 letter domain names
  • Sponsored Post
    • Make a Contribution
  • Market Pulse
  • Contact

DomainTools Introduces New Domain Discovery and IP Risk Feeds to Predictively Identify New and Existing Dangerous Internet Infrastructure

August 4, 2021 By admin Leave a Comment

Domain Discovery Feed, IP Hotlist, and Hosting IP Risk Feed provides security teams with visibility into risk levels of domain and IP traffic through multiple inputs to strengthen network defense

SEATTLE – DomainTools, the leader in domain name and DNS-based cyber threat intelligence, today announced Domain Discovery Feed, a real-time daily list of all newly-registered and newly observed domains identified by DomainTools’ globe-spanning detection network, the industry’s most complete feed for new domain information.

In addition, the company announced a new line of IP Risk products to identify potentially dangerous infrastructure based on hosted domains. The IP Hotlist is a highly curated daily list that contains the riskiest IP addresses on the Internet that have had traffic to malicious domains while the Hosting IP Risk Feed contains all IPv4 addresses hosting at least one domain, regardless of traffic or risk. Both IP Risk products leverage DomainTools predictive DomainTools Risk Score technologies.

DomainTools introduces Domain Discovery and IP Risk Feeds to predict new and existing dangerous Internet infrastructure.

Security teams need reliable inputs on the risk level of the domains and IP addresses seen in their traffic flows in order to improve situational awareness and to ward off incursions that may be underway. With an increasing amount of DNS traffic being encrypted, IP-based indicators are critical. And as more network defenders are looking to the identification of new domains as a signal of risk一thousands of newly registered domains are used every day for phishing, ransomware, credential harvesting, fraud, and more一they need to be able to cross-check brand-new domains against domains seen in web proxy or DNS resolver to reveal traffic to potentially harmful infrastructure.

DomainTools now offers three new feeds, each with a specific area of focus, to help with these needs:

IP Hotlist: Designed to identify the riskiest population of hosting IP addresses. Two main criteria define this list: the ratio of high-risk to legitimate domains hosted in the IP, and the level of traffic in the last 24 hours that has known or predicted malicious domains, as measured in Internet-wide passive DNS collection. The Hotlist is an ideal database for high-confidence block list and detection rule creation. The typical Hotlist size ranges daily and fluctuates between but can exceed 40,000 and 50,000 IP addresses.

Hosting IP Risk Feed: A daily feed of all IP addresses found to be hosting at least one domain. As with the Hotlist, a risk indicator is given to the IP address based on the population of domains it hosts. Unlike the Hotlist, however, this feed includes any actively-hosting IP, regardless of its risk level, and the IP Risk Feed also contains detailed data fields enriching the IP. This makes it ideal for users who wish to apply their own criteria to evaluate IP addresses for risk or characterize them for other purposes. Typical Risk Feed size ranges daily and fluctuates between but can exceed 15 and 20 million IP addresses.

Domain Discovery Feed: A simple text file of newly-registered and newly observed domain names. This gives users maximum flexibility for using the new domain information to create alert or block rules for network or host defenses. Security Information Event Management (SIEM) platforms, Threat Intelligence Platforms (TIP), and a variety of other log and event aggregation sources can capture domains accessed from the protected environment; scripts that check these domains against the Domain Discovery Feed can then raise alerts when traffic to matching domains is observed. In some environments, a zero-trust policy toward new domains is employed; in such cases, the Domain Discovery Feed can enable the creation of automatic blocking rules for most traffic, or quarantine/inspection rules for SMTP and other protocols that can accommodate various dispositions.

“With nearly 20 years of experience gathering, processing, and provisioning domain-related data, DomainTools has built unmatched capabilities for detecting the presence of new domains, as well as changes to existing ones, making Domain Discovery Feed the most accurate and complete industry feed for harnessing new domain intelligence,” said Dan Fernandez, Senior Product Manager at DomainTools. “The new IP Risk products, IP Hotlist and Hosting IP Risk Feed, are unique because unlike traditional IP reputation lists, they use predictive assessments based on DomainTools Domain Risk Score to reliably predict how likely a given domain is to be malicious, even before the domain has been weaponized, to pinpoint and characterize the most dangerous infrastructure on the Internet.”

About DomainTools
DomainTools empowers security professionals to get ahead of attacks by identifying attacker infrastructure, getting immediate context and visibility on threats,and making faster risk assessments, thereby dramatically improving the security posture of their organization. Fortune 1000 companies, global government agencies, and leading security solution vendors use the DomainTools platform as a critical ingredient in their threat investigation and mitigation work. Learn more about how to connect the dots on malicious activity at https://www.domaintools.com or follow us on Twitter: @domaintools.

SOURCE DomainTools
http://www.domaintools.com

Filed Under: Press Release Tagged With: press release

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Footer

Recent Posts

  • Sold: WineRelais.com
  • Domain name workshop, from March 15, 2023
  • Secure Your Domain Empire: How VPNs Can Help Domain Investors Protect Their Digital Assets
  • Making marketing case for domain name Exclusive.org
  • Cloudflare Wins CISA Contract for Registry and Authoritative Domain Name System (DNS) Services
  • American companies are increasingly assuming Finnish names
  • Sold: reposco.com
  • Verisign Reports Internet Has 349.9 Million Domain Name Registrations at the End of the Third Quarter of 2022
  • 2022 CSC Domain Security Report Finds Nearly Three Quarters of Global 2000 Companies are at Alarmingly High Risk of Exposure to Security Threats
  • Sold: webxrtools.com

Media Partners

  • Opinion
  • Exclusive Domains
  • Briefly
  • OPINT
  • VPNW
  • S3H
  • Domain Aftermarkets
  • App Coding
  • API Coding
  • Blockchaining

Media Partners

  • Technology Conferences
  • Event Sharing Network
  • Cybersecurity Events
  • Event Calendar
  • Calendarial
  • Domain Market Research
  • Pixel Effect
  • Domain Name for Business

Copyright © 2018 DomainMarketResearch.com

Technologies, Market Analysis & Market Research Reports

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
Do not sell my personal information.
Cookie SettingsAccept
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT