misp-warninglists icon indicating copy to clipboard operation
misp-warninglists copied to clipboard
verified publisher icon MISP

Adding Cisco Umbrella "The popularity list contains our most queried domains. It includes TLDs, root domains, and subdomains."

Open adulau opened this issue 9 years ago • 2 comments

http://s3-us-west-1.amazonaws.com/umbrella-static/index.html

adulau avatar Dec 15 '16 21:12 adulau

I've PRed such a warninglist proposal. It's not exactly Top1000, as we've removed a few dozen TLD (.com, .org. .info, etc.)

cert-orangecyberdefense avatar Dec 20 '16 16:12 cert-orangecyberdefense

Cisco umbrella is great as it's the traffic you're likely to see on the network, rather than just websites like you get with Alexa.

There are a few malicious domains in there though, these popped up on a quick check earlier:

21250 differentia[.]ru Andromeda DownloaderSinkholed by MalwareTech 26422 disorderstatus[.]ru "" 46788 atomictrivia[.]ru "" 60654 api-restlet[.]com Android Spyware 72105 api.safesurfing[.]me Stantinko Adware 72120 safesurfing[.]me "" 104127 iamback.ddns[.]net H-Worm and njRat malware 117518 e.googlex[.]me Nitol malware 120121 iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea[.]com WannaCry Ransomware Sinkholed by MalwareTech 120507 hummercenter[.]com CopyCat Android Adware

chrisdoman avatar Dec 28 '17 21:12 chrisdoman