Why it's important
On a day-to-day basis, AusCERT encounters numerous phishing and malware attacks which are analysed and curated in the Malicious URL feed. By consuming our feed members prevent compromises.
What's included
The malicious URL feed is only available for AusCERT members and can:
- Be added to your firewall or content filter blacklist to prevent inadvertent compromise to client computers on your network.
Or
- Check web log files to see if any client computers on your network may have already connected to these websites as a way to detect potential compromises to client computers on your network.
The feed is updated at regular intervals and is available in two types:
- Previous 24 hour feed
- Previous 7 days feed
It’s also split into two categories and an all-inclusive feed is provided:
- Phishing hosting
- Malware hosting
FAQs
You must be a member with a user account, then you can follow the instructions in our publication https://www.auscert.org.au/publications/2017-04-11-using-api/