Blog & How To Guides | WhoisXML API

WhoisXML API Blog

Predictive Threat Intelligence: Introducing the New Early DGA Detection Feed

The current cyber threat landscape leaves security teams with no option but to be proactive and continuously aim to stay one step ahead of threat actors. To supplement existing threat intelligence feeds that keep track of known bad properties, WhoisXML API recently launched the Early DGA Detection Feed. This predictive threat intelligence source tracks new domains created algorithmically, leveraging a combination of Machine Learning and Artificial Intelligence, typically identifying pre-weaponizationed domains as they get registered.

March 2023: New Domain Activity Highlights

Of the millions of domains registered during 1–31 March 2023, WhoisXML API researchers studied a randomized sample of 31,000 domains to determine commonalities in their registrant countries, registrars, and TLDs. Part of our analysis also included looking into the domain registration volume for the riskiest or most-abused TLDs.

We also analyzed domain text string usage to detect potentially emerging trends. Check out our findings below and links to the threat reports our researchers put together using our domain, DNS, and IP intelligence sources.

Top 24 Domain, IP, and DNS Intelligence Trends and Cybersecurity Statistics for 2022–2023

Aggregated domain and DNS data is a rich source of intelligence, providing security researchers, companies, and solutions with contextual information for multiple business and cyber processes, including threat detection and response, attack surface management (ASM), third-party risk management, brand protection, and identity and access management (IAM).

Over the years, WhoisXML API has conducted several cyber investigations and collated some facts and statistics from our most recent work below.

February 2023: New Domain Activity Highlights

Of the millions of domains registered on 1–28 February 2023, WhoisXML API researchers analyzed a randomized sample of 28,000 domains to determine their top registrars, registrant countries, and TLD distribution. We also studied their text string usage to detect possible emerging trends. Check out our findings below, along with links to the threat reports our researchers put together using our domain, DNS, and IP intelligence sources.

WhoisXML API Is Now a Snowflake Partner

Internet data sharing and transparency have always been part of WhoisXML API’s advocacy. Our commitment to this goal has prompted us to develop collaborative relationships with various entities, including security companies and platforms, researchers, and media organizations.

Among our most recent endeavors relevant to that is joining the Snowflake Partner Network. This collaboration means that WhoisXML API’s comprehensive WHOIS, IP, and DNS intelligence can now be accessed through Snowflake.

Joint users can now have instant access to domains as they are added, updated, and dropped on a daily basis while enjoying the platform’s scalable, flexible, multi-cluster data architecture.

January 2023: New Domain Activity Highlights

Out of millions of domains registered during 1–31 January 2023, WhoisXML API researchers analyzed a sample of 1 million domains to determine their top registrars, registrant countries, and TLD distribution. We also studied their text string usage to detect emerging trends. Check out our findings below, along with links to threat reports our researchers put together using our domain, DNS, and IP intelligence sources.

December 2022: New Domain Activity Highlights

Using our extensive collection of domain intelligence, WhoisXML API researchers analyzed several millions of newly registered domains (NRDs) added on 1–31 December 2022. We studied their top-level domain (TLD), registrar, and registrant country distribution. We also looked at their text string usage as part of the effort to detect emerging trends. Check out our findings below, along with links to threat reports our researchers put together using our domain, DNS, and IP intelligence sources.

November 2022: New Domain Activity Highlights

WhoisXML API analyzed more than 5.6 million newly registered domains (NRDs) added on 1–30 November 2022 to detect trends, such as top-level domain (TLD) and text string usage. We also looked at the WHOIS data redaction status and registrar and registrant country distribution of the NRDs. Check our findings below, along with threat reports our researchers put together using domain, DNS, and IP intelligence.

Try our WhoisXML API for free
Get started