This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ED
Advisor
‎2020-03-31 05:32 AM

COVID-19 Threat List

Domaintools provides a list of more than 95000+ high-risk domains (currently) related to Covid-19.

Link to the article: https://www.domaintools.com/resources/blog/free-covid-19-threat-list-domain-risk-assessments-for-cor... 

How to use it? sk132193. 

 

From Domaintools:

 

DomainTools is providing a free, curated list of high-risk COVID-19-related domains to support the community during the Coronavirus crisis. The list will be updated daily and available for CSV download.

 

How you can use the COVID-19 Threat List

  • Integrate the domains into your organization's internal or consumer-facing products to proactively alert on high risk domains
  • Identify and provide information about emerging threats to your organization or consumers to support community awareness and consumer protection
  • Aid intelligence researchers in their COVID-19-related investigations by highlighting high-risk domains
  • Track activity associated with domains on the list to observe behavior and determine objectives
  • Analyze historical logs against the domains on the COVID-19 Threat List to see if any interactions occurred (detect past compromise)
  • Create rule-driven action by integrating with in-house platforms, so that, if a domain that’s detected appears on the COVID-19 Threat List, a system can action that domain according to pre-established rules in an integrated system (e.g., Splunk, QRadar)

Technical Information

  • The COVID-19 Threat List is available for download as a gzipped text file, updated daily
  • Each row of the file is tab-delimited with the following fields:
  • domain_name, create_date, risk_score
  • The file is sorted by risk_score and create_date such that the most risky (the “99’s”) and youngest domains are at the top
  • All domains on the list have a create date of 1 Jan 2020 or newer
  • All domains on the list have a Risk Score of 70 or above

 

0 Kudos
0 Replies

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events