The TXT Record

Hunting for synthetic substances using DNSDB Search

Thursday, July 15, 2021 By Boris Taratine

The Threat This week, the U.S. government reported overdose deaths soared to a record 93,000 last year in the midst of the COVID-19 pandemic, up 29% over the previous year, with much evidence pointing to the increased use of the opioid, Fentanyl. The emergence of numerous synthetic fentanyl analogs, including acetylfentanyl, butyrylfentanyl, acrylfentanyl, furanylfentanyl and β-hydroxythiofentanyl, which are manufactured in China, were made available to the illicit drug traffickers over the Internet. If we are...

Read more

Year-by-Year TLD Volumetric Data Covering A Decade

Monday, June 28, 2021 By Joe St Sauver

New Farsight research shows DNS network traffic for more than 1500 top-level domains, from 2010-2019

Read more

What's a UUID?

Tuesday, June 22, 2021 By Joe St Sauver

I. Introduction When working with DNSDB or Security Information Exchange (SIE) DNS-related channels, you may occasionally see domain name labels with a very distinctive "dash-separated pattern" such as the following: 8a1c7f6a-ac5e-4898-af1e-2654d0fa8e45.probe.performance.dropbox.com. c34b98c1-02d5-4020-a6e0-c89af9a9b56e.sync.upravel.com. 0fe9da84-55ab-48fc-847e-4da8807419ee.mitdmp.whiteboxdigital.ru. bec89e42-fe87-44a0-b53d-55b8bc7b7a7a.notifications.api.brightspace.com. 9565a982-6467-4d43-94ac-a5094ad877cc.us.u.fastly-insights.com. f5489548-9f97-4a48-b22b-2f03aec465aa.edge1.pingone.com. eaf4f4b1-65fa-5480-5013-05ab140f8498.z1.dca0.com. That is, the bolded portion of each of those names all follow the pattern: Eight hexadecimal digits followed by a dash Four hexadecimal digits followed by a dash (repeated two additional times) Twelve hexadecimal digits These names are...

Read more

Opt What?

Monday, June 14, 2021 By Paul Vixie

All opt-out is spam. If you're not a spammer, don't use the verb "to opt-out" in connection with any of your activities.

Read more

Farsight DNSDB Transforms for Maltego with Flexible Search Now Available

Tuesday, June 8, 2021 By Robert Duran

Today Maltego Technologies GmbH and Farsight Security announced that Farsight DNSDB Transforms for Maltego have been updated to include DNSDB 2.0 Flexible Search capabilities and renamed DNSDB Transforms to align with Maltego's best practices. We are excited to deliver these new capabilities to threat hunters! Let's dig into what's changed and the benefits of the updated Transforms. First, a little bit history… Farsight’s flagship product, DNSDB is the world's largest database of historical DNS information...

Read more