Home » Archive by categoryDT 101

Hunting Grizzlies with DomainTools Iris

When we hunt, we’re usually starting with some kind of indicator that something bad has happened. These are often referred to as IOCs or Indicators of Compromise. When we get a good report like this one from Homeland Security, we can use it to help us find out more about a threat actor and their […]
Continue reading

DomainTools 101: Risky Business

I want to start the New Year by making a couple of predictions for how things will go in 2017. I’m going to predict that The Atlanta Falcons will beat the Green Bay Packers, that the Pittsburgh Steelers will lose to the New England Patriots and that the Falcons and Patriots will end up in […]
Continue reading

Rent an IP, Own a Domain

The other day I was on a mission to locate a contact of mine that lived nearby. I had an address, but no phone, or email address. So I got the GPS out, programmed in the address, and away I went. Arriving at the location, I turned into the driveway, and it was an apartment […]
Continue reading

DomainTools 101: Threat Hunting with a Machete, and a Scalpel

I’ve been fascinated by the attacks on the US political campaigns, their sites, and by the report from Threat Geek about the spoofed Democratic Campaign Committee donation page. It really got me thinking about how careful we need to be as consumers/donors with where we are spending or donating our hard earned cash. One of […]
Continue reading