DomainTools and Farsight Security, Inc., the leaders in DNS-based cyber threat intelligence, today announced a partnership to deliver Farsight’s market-leading DNSDB data via the DomainTools Iris investigation platform. Farsight DNSDB is the world’s largest historical DNS database, containing more than 13 billion DNS observations. This resource, combined with DomainTools’ comprehensive domain profile data, empowers security analysts to conduct complete investigations within Iris. Instead of toggling between multiple threat portals, analysts enjoy a more streamlined workflow and broader and more timely insights within a single investigative environment. In addition to Farsight Security, DomainTools has also integrated three other unique and very powerful DNS data sources in the same release, ensuring Iris has the broadest passive and active DNS data sets available anywhere.
Cybercrime poses a real, global and persistent threat to business, government, and financial institutions, and is one of the fastest growing economic crimes in the world (PwC). Security teams need increasingly effective and comprehensive products to streamline their important threat intelligence and incident response work. Forward-thinking security vendors are increasingly working together to bring these needed advances to bear for their customers.
“Farsight’s passive DNS data is widely regarded as the gold standard for its completeness, timeliness, and accuracy. By integrating this data with our uniquely powerful DomainTools profile data, we’ve made Iris the most comprehensive threat intelligence platform available to security teams today,” said Tim Chen, CEO of DomainTools.
Dr. Paul Vixie, CEO of Farsight Security, adds “DomainTools and Farsight each have market-leading data sets used by the most sophisticated security organizations worldwide, often in parallel. Our many mutual customers have been asking us to work together to deliver a unified solution and I’m thrilled to see our data now in line within the powerful Iris platform.”
The Iris platform and its corresponding API allow network defenders to comprehensively surface and map attack infrastructure and is the market’s most effective tool for threat actor attribution. Connecting attackers to the specific domains, hostnames and IP addresses they control allows security teams to create customized rules to secure their network through whatever technologies they are using in-line. The Iris platform’s rapid adoption has made it the go-to investigation product for security teams and law enforcement agencies worldwide, with thousands of global users including over one third of the Fortune 100.