“Decoding Political Violence with OSINT and Lessons from the Frontline”

Join deep dive: Wed, Dec 18, 16:00 CET
Sign In Get a Demo

Close

Close
4.5 rating

Get Started with Maltego

Please share your contact information for a personalized session.

By clicking on "Submit", you agree to the processing of the data you entered and you allow us to contact you for the purpose selected in the form. For further information, see our Privacy Policy.

Thank you!
We will contact you soon.

In the meantime, check out our product overview
to learn more about the Maltego platform.

Schedule a personalized 30-minute demo to
see how we can meet your investigation needs.

home Transform Hub

Spamhaus Intelligence

By Maltego Technologies
Access rich IP and domain reputation signal to build context, insight and validation.
Spamhaus

Spamhaus is the trusted authority for robust, and reliable, IP and domain reputation data.

Every day, billions of data points are analyzed from Signal Intelligence (SIGINT) and Open-Source Intelligence (OSINT). This provides actionable insight for incident response, threat intelligence, Security Operations Centers and more.

Transforms based on Spamhaus’ IP Reputation data provides signal on both malicious, and compromised, IP addresses showing indications of: • Malware • Trojans • Worm infections • Botnet command and controllers • Devices controlled by botnets command and controllers • Third part exploits • Spam • Phishing

Transforms based on Spamhaus’ Domain Reputation data provide signal on every domain Spamhaus observes, whether indicating malicious intent, or not. For example, malware associations and related domains across email authentication, registration, and infrastructure.

Typical Users of Spamhaus Intelligence

  • Threat Intelligence Teams
  • Incident Response Teams
  • Cyber and Digital Forensics Teams
  • Trust and Safety
  • Penetration Testers
  • CERTs
  • SOCs

Integration Benefits

Threat context and validation

Understand the behavior, properties, and relationships of potential threats to quickly assess, pivot and prioritize to the most critical areas of concern.

Reduce false positives

Spamhaus has been analyzing IPs and domains for over 25 years, developing a robust methodology to ensure low false-positive rates. Spamhaus assessments can be made in seconds, with your Maltego instance updated in real time.

Confidence in investigative conclusions

With detailed signal returned, build a more comprehensive understanding of malicious activity to make more accurate and informed decisions.

Enrich existing threat intelligence

Gain an understanding of risk associated with IPs and domains in combination with other data sources available on the Maltego Transform Hub to substantiate your investigation’s findings.

Leverage Spamhaus Inteligence for

Incident Response

Build a comprehensive picture of security events with a vast number of domain and IP signals – for example, the bot name associated with detected malicious activity, the destination port of the traffic that triggered the detection or where the identified C&C service has been observed running, and an array providing information about the binary files observed referring to the specific C&C instance.

Threat hunting

Use reputation data to correlate business IT IOCs, and malicious resources used, when performing internal Threat Hunting activities. Observe signals related to IOCs to provide actionable proactive insight on threats. Improve prioritization on where remediation and defensive measures need to be implemented or enhanced.

Law Enforcement

Research and attribution information can and has been used to identify the infrastructure used by cybercriminals in order to deliver malware to private citizens and businesses. Use the data to assist in mapping, with time relevant context, cybercriminal global infrastructure with malware families identified to assist in attribution.
Read more

Terms and Conditions

Learn more about the Terms and Conditions of Spamhaus Intelligence at: Terms and Conditions

Close

Contact

Reach out to us to learn more about this data integration and how to access it.
By clicking on "Send Message", you agree to the processing of the data you entered and you allow us to contact you for the purpose selected in the form. For further information, see our Data Privacy Policy.

About Spamhaus

Spamhaus is the trusted authority on IP and domain reputation data. With over 25 years of experience, the quality and accuracy of our data, alongside our robust infrastructure, is what sets us apart.

By analyzing over 13 billion SMTP connections, 18,000 malware samples and 1.5 million IPs every day, our highly experienced team of researchers work on your behalf to detect threats including: Malware,Ransomware, Botnets, Spam ,Phishing threats.

For more information, visit: https://www.spamhaus.com/product/intelligence-api/

Products & Pricing
Get Maltego
Data Sources
Company
Resources
© 2018-2024 by Maltego Technologies. ISO 27001:2022 Certified