This document provides an overview of how Maltego and Farsight Security together help Security and Intelligence teams and Law Enforcement to expedite their investigations by combining DNS intelligence with Maltego capabilities. By integrating Maltego and Farsight, investigators can expand their investigations by retrieving and pivoting on passive DNS (pDNS) records for hostnames and IP addresses from Farsight with internal data and other exclusive third-party data sources such as threat intelligence feeds and infer connections between different Entities.
How Farsight Benefits Investigators and Analytsts 🔗︎
Farsight Security DNSDB® is the world’s largest DNS intelligence database that provides a unique, fact-based, multifaceted view of the configuration of the global Internet infrastructure. Farsight collects Passive DNS data, and then filters and verifies the DNS transactions before inserting them into the DNSDB, along with ICANNsponsored zone file access download data— resulting in more than 100 billion domain resolution records and updated in real-time at over 200,000 times/second.
Download this PDF solution brief and read more about how investigators use Farsight Transforms in Maltego.
Farsight provides all Maltego users with a free trial, instantly accessible on the Maltego Desktop Client without registration or an API key. If you are interested in the 30-day free trial or accessing Farsight Transforms in Maltego, please refer to the information here.