This document provides an overview of how the DomainTools Iris data integration for Maltego helps investigators can perform infrastructure risk assessment and seamlessly integrate workflows into a Maltego Graph and vice versa.
How DomainTools Iris Benefits Cyber Threat Investigators 🔗︎
With the world’s largest database of domain and DNS intelligence, DomainTools empowers analysts to develop key insights into the nature and extent of adversary holdings, based on a proven methodology of characterizing and connecting domains through the data points they have in common. Those connections inform risk assessments, help profile attackers, guide online fraud investigations, and map cyber activity to attacker infrastructure.
The DomainTools solution for Maltego extends the rich domain name dataset and powerful pivot capabilities of DomainTools to the Maltego graph, enabling investigators and analysts to map connected infrastructure, run correlations, look at attribution, highlight risky domains, etc. to surfacing meaningful insights.
Download this PDF solution brief and read more about how investigators use DomainTools Transforms in Maltego.