When hosts on your network are accessing newly-registered domains, there’s a good chance bad things are heading your way. So, you’ll want to know as soon as possible if this is happening.
New from Stamus Labs - a collection of newly-registered domains that could be used for phishing or to host and control malware.
Every day, the Stamus Labs team collects all newly-registered domains and identifies those which appear to be algorithmically-generated (high-entropy) and those which use typosquatting and homoglyph techniques to mimic popular legitimate domains (phishing).
We package these into six feeds optimized for SELKS and Suricata 7 users and make them available for FREE.
Want to learn more? Our team has created several additional resources on this topic:
These lists contain all domains registered in the last 14 or 30 days (2 separate lists).
These lists contain the high-entropy domains registered in the last 14 or 30 days (2 separate lists).
These lists contain the suspected phishing domains registered in the last 14 or 30 days (2 separate lists).