Product Details

Domain Collector

Created: 2023

Czech title
Domain Collector
Type
software
License
required - free
Authors
Horák Adam, Ing. (FIT BUT)
Polišenský Jan, Bc. (FIT BUT)
Hranický Radek, Ing., Ph.D. (DIFS FIT BUT)
Keywords

domain name, MISP, Cisco Umbrella, threat, DNS, WHOIS, RDAP, TLS, ICMP, MongoDB

Description

Domain Collector enables automated collection, aggregation and storage of knowledge about currently known trusted and dangerous domains on the Internet. It uses resources such as Cisco Umbrella and MISP Threat Sharing feeds, particularly VirusTotal, PhishTank, and OpenPhish, to obtain domain names. It then downloads and processes additional information about individual domains based on: 1) active interaction - server response to ICMP echo messages, open known ports, 2) external sources such as DNS, WHOIS/RDAP, information from TLS certificates, etc. The acquired knowledge is then stored in a MongoDB database where it can be used for other purposes (rule creation for application firewalls or IDS/IPS systems, threat intelligence, machine learning, and cyber threat detection research).

Location

Application is downloadable from the attached files.

Licence

Copyright (c) 2023 Adam Horák, Jan Polišenský, Radek Hranický

Permission is hereby granted, free of charge, to any person  obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

Files
Projects
Smart information technology for a resilient society (FIT-S-23-8209)
Research groups
NES@FIT - Networks and distributed systems research group (VZ NES@FIT)
Back to top