Backend Data API for Network Security Screening of Domains and Hostnames

Monitor Phishing / Malicious Domains

Find domains that are registered for malicious reasons. For example, variations of all these domains were used at one time for phishing attempts on the customers of the corresponding companies.

You can use the API to find gTLD domains that contain keywords you specify and were registered the previous day or even within the last 30 or 45 days. We currently support almost all the gTLDs but not country code TLDs (ccTLDs).

Monitor SSL/TLS Certificates for Phishing Hostnames

Similar to malicious domain names, phishing also takes place using regular domain names that otherwise look normal. Variations of all these hostnames were used at one time for phishing attempts on the customers of the corresponding companies.

The ***** in the above example could be any normal looking domain name.

Use the API to find phishing hostnames from recently issued SSL/TLS Certificates. You can search the issued certificates during the last30 days.

Monitor Nameservers that are often Misused

Search through domains hosted on specific name servers that are known to host phishing domains.

If you find a phishing domain, you can check to see if the name server that hosted it host other similar phishing domains.

Monitor Dangling A/CNAME Records

Misconfigured DNS A or CNAME records could cause your client domains to become part of phishing networks.

Monitor SSL/TLS certificates to check if client owned domains are part of phishing hostnames.