You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This report lists DNS queries seen from recursive DNS servers for sinkholed domains. Please note that the IP listed are not the
same as the actual source IP of the client that is making the query and hence are likely not infected hosts. This report therefore
is to be used primarily to support investigations into a threat, and not as a source of direct identification of infected hosts.
not sure how useful that information is in IntelMQ
We are missing a mapping for this feed: https://www.shadowserver.org/what-we-do/network-reporting/sinkhole-dns-report/
The text was updated successfully, but these errors were encountered: