Overview

Farsight DNSDB, developed by Farsight Security (now part of DomainTools), is the world’s largest passive DNS intelligence database. It provides a unique, factual, and multifaceted view of the configuration of global internet infrastructure. Powered by data from the Security Information Exchange (SIE), DNSDB offers deep historical and real-time visibility into DNS resolutions observed across the internet. DNSDB is trusted by cybersecurity professionals to investigate threats, attribute malicious activity, and improve situational awareness. With DNSDB 2.0, the introduction of Flexible Search enables analysts to use regular expressions for complex queries, providing greater investigative power. The solution plays a critical role in threat hunting, incident response, and forensics by uncovering patterns in DNS activity associated with malicious infrastructure.

Features and Capabilities

• **Extensive DNS intelligence database: **Contains over 100 billion DNS records dating back to July 2010, with daily intake of 2TB of DNS data and up to 200,000 observations per second.
• **Flexible Search with regular expressions: **Enables advanced threat hunting with full regex support, ideal for pattern discovery and infrastructure correlation.
• **Access to both real-time and historical data: **Supports investigation of ongoing threats and retrospective analysis of past campaigns and threat actor behavior.
• **API access for integration: **RESTful API allows integration with threat intelligence platforms, SIEM, SOAR, and custom security workflows.
• **DNSDB Scout (GUI tool): **A web-based graphical interface for searching DNSDB data visually, simplifying analysis for non-technical users.
• **On-premise solution via DNSDB Export: ** Offers a local deployment of DNSDB for faster queries, unlimited data access, and private infrastructure investigations.
• **Compatible with industry tools: ** Integrates with platforms like Splunk, Microsoft Sentinel, and ServiceNow to support enriched contextual data in security operations.