Code Background

This quarter has been a busy one for DomainTools! We’re honored to report our Iris Investigation Platform won three Cyber Security Excellence Awards including Best Cyber Threat Intelligence Platform, Threat Hunting Platform, and Security Investigation Platform. Additionally, our VP of Marketing, Ariella Robison, won Cybersecurity Marketer of the Year for the North American region. Another accomplishment we’d like to share is this quarter, we announced new enhancements to the DomainTools Iris modules in MISP . With these enhancements, you can now gain context on domain names, find correlated MISP events with shared attributes, pinpoint dedicated hosting, and more. Finally, we debuted our new podcast, Breaking Badness, where Kelsey, Tim and Emily discuss the week’s security news, industry grievances, and how old Abraham Lincoln would be if he were still alive. We hope you enjoy these highlights from our last three months.

Button 1

The Sonny & Cher of Digital Intelligence Gathering

Leveraged by our colleagues for digital intelligence gathering through data mining and correlation, DomainTools for Maltego is helping customers map attacker infrastructure with domains and IPs. One can get started with little to no dependencies. With knowledge of DNS and OSINT and you’re on the right path in Maltego.

Button 2


At DEF CON last year, Michael Thompson had the opportunity to participate in a capture the flag (CTF) competition that focused on industrial control systems (ICS). For those who don’t know, DEF CON is one of the most widely attended security/hacker competitions in the world, hosted annually in Las Vegas. Security CTFs are competitions that involve using a wide variety of offensive and forensic security […]

Button 3

Moving Target Defense and DNS Fast Flux

Moving Target Defense has become a buzzword in cybersecurity circles because of its promise to function as a proactive solution for zero day vulnerabilities. A zero day is a vulnerability that is being actively exploited for some time before “day one” of the public’s knowledge of the vulnerability, which makes it impossible for security professionals to defend […]

Button 4

Happy International Women’s Day

Every year on March 8th (for over a century), organizations from around the world come together to celebrate International Women’s Day. It’s a day to celebrate the accomplishments of our female colleagues, mentors, and heroes’. Even more importantly, the day represents a call to action for the continued goal of gender equality and parity. I am privileged as a DomainTools employee to be […]

Button 5

435 Million Certificates and Counting

: I’m happy to announce that we’ve open-sourced our SSL certificate parser! This Python package is used in our production systems to robustly parse TLS certificates that we find on the web. It provides a command-line utility as well as an importable module that you can use in your own code. The tool is called x5092json and is now available for installation […]

Button 6

The 4 Step Guide to Exploring Attacker Infrastructure with Web Assets

In general, when we refer to web assets, we mean files that are loaded into the main HTML of a site via HTML tags. Examples include: Javascript files, CSS files, Images […]

Button 7

Post-GDPR Security Investigations Part I

In May 2018, the General Data Protection Regulation (GDPR) went into effect and subsequently altered the way that cybersecurity analysts are able to perform their investigations. Where, previously, connections between incidents and attribution had often been tied to publicly available Whois data, there was now the word REDACTED hindering those linkages […]

We will continue to work hard for all of you in Q2 . Additionally, we will be sure to keep you apprised of our progress, conferences and events, technical topics, industry news and much more. If there are any topics you would be interested in reading about on our blog, please feel free to tweet us at @DomainTools or leave us a comment below.