You have been redirected from paterva.com. Maltego.com is the new home for all information regarding Maltego products. Read more about this in a message from the Paterva team and in this blog post and FAQ. close
home Transform Hub data categories - Infrastructure & Network Information

Farsight DNSDB

By Farsight Security Inc.
Correlate and contextualize real-time and historical DNS data to expose networks and infrastructure.
Farsight DNSDB integration for Maltego
Infrastructure & Network Information Recon Incident Response Intelligence Collection

Farsight DNSDB Transforms for Maltego

Together, Farsight and Maltego have strengthened cyber investigations, providing actionable insights and expediting the investigation process. Farsight DNSDB® integrates with Maltego to provide seamless analytical workflows in the Maltego graph, enabling investigators and analysts to map connected infrastructure, run correlations, develop activity clustering and potential attribution, highlight risky traffic flows, and carry out other analyses to surface meaningful insights.

Farsight DNSDB data in Maltego

  • Threat Hunters and Network Defenders
  • SOC Analysts
  • Law Enforcement and Anti-fraud Analysts
  • Incident Responders

Integration Benefits

Leverage Farsight DNSDB Data for

Threat Hunting
By developing a more complete picture of the assets that adversaries are using in campaigns, threat hunters can identify patterns of infrastructure use that allow them to anticipate future moves by adversaries. This can enable blocking or alerting on emerging campaigns before they cause further harm.
Incident Response
Forensics and incident response investigators can expose entire networks, gain an outside-in view of their infrastructure to detect any suspicious or hostile activities and take measures to defend against malicious attacks on the systems.
Law Enforcement
The e-crime divisions within Law Enforcement Agencies use historical DNS data to correlate Internet and network traffic observations with other events, and gain insight into the source, ownership, and destination of Internet traffic. Farsight’s high-frequency updates mean officers can actively hunt for systems and people involved in cybercrime, such as hunting for the command server of an active malware campaign.

Pricing & Access

Community Hub
Available for users with Maltego CE.
Click-and-Run (CE)
Simply install the Hub item on your Maltego Desktop Client and start using it, with a Transform run allowance of 8,640 Transform runs/month.
Bring Your Own Key (Purchase Separately)
For full solution access, plug in your existing API key or reach out to us using the form below for purchase inquiry.
Commercial Hub
Users with Maltego One have the following access or purchase options:
Click-and-Run (Pro)
Simply install the Hub item on your Maltego Desktop Client and start using it, with a Transform run allowance of 8,640 Transform runs/month.
Click-and-Run (Enterprise)
Simply install the Hub item on your Maltego Desktop Client and start using it, with a Transform run allowance of 8,640 Transform runs/month.
Bring Your Own Key (Purchase Separately)
For full solution access, plug in your existing API key or reach out to us using the form below for purchase inquiry.

Contact


By clicking on "Send Message", you agree to the processing of the data you entered and you allow us to contact you for the purpose selected in the form. For further information, see our Data Privacy Policy.

About Farsight DNSDB

Farsight Security DNSDB® is the world’s largest DNS intelligence database that provides a unique, fact-based, multifaceted view of the configuration of global Internet infrastructure. DNSDB leverages the richness of Farsight’s Security Information Exchange (SIE) data-sharing platform, and is engineered and operated by leading DNS experts. After collecting passive DNS data from its global sensor array, Farsight then filters and verifies the DNS transactions before inserting them into the DNSDB, along with ICANN- sponsored zone file access download data. The end result is the highest-quality and most comprehensive DNS intelligence service of its kind, with more than 100 billion domain resolution records and updated at rates of over 200,000/second. Fortune 1000 companies, global government agencies, and leading security solution vendors use Farsight’s DNSDB, Newly Observed Domains/Hostnames, and other DNS resources as critical ingredients in their threat investigation and mitigation work. Since November, 2021, Farsight Security has been part of DomainTools.

For more information, visit: https://farsightsecurity.com