Fully know your attack surface
Product News and Use Cases
We aim to be the biggest treasure trove of security data available. And if we want you to rely on us, it’s important to keep you informed on our quest for the perfect solution.
Transparency about our data is a top priority — including what we’re doing with it and any quirks we find along the way. This is why we keep a regularly updated Changelog where you can see everything our engineers bring forth: product updates, launches, bug fixes. We also keep everything fresh on the blog in our News category, where each month we highlight all of those updates and changes to keep you fully informed about all of our products.
You’ll find writeups from our team retreats and gatherings in our News section as well, including the first marketing and product meetup in Las Vegas during our early days, the meetup in Budapest, and one of the most recent events in Bali. All company-wide updates such as the SecurityTrails data bounty program, updates to our domain discovery pipeline and announcements of all of our new integrations and wrappers can be found in this category.
Stay informed about everything going on at SecurityTrails!
February Product Updates: New HTTP Header Data in SQL Explorer and Improved Tagging
We are excited to announce new features for SurfaceBrowser™. Now you can perform a new range of HTTP header-based queries to get information from our port 443 crawled data, and gain quick access to improved tagging for faster asset discovery.
Introducing ASRv2: The Next Level in Attack Surface Reduction
After months of hard work, we’re excited to announce the immediate availability of our Attack Surface Reduction tool’s latest version: ASRv2!
SecurityTrails Year in Review 2020
The year is almost over, can you believe it? And 2020 has been one heck of a year. With so many ups and downs, we can all agree to breathing a sigh of relief once its end was in sight. Yet however the year treated us, we’d like to acknowledge many good moments and memories made.
Iran, the IRGC and Fake News Websites
Recently, the Department of Justice made two public announcements about shutting down fake news websites created by Iran’s Islamic Revolutionary Guard Corps (IRGC). In the first instance, 92 domains were seized in August 2020. And according to the second announcement, 27 more domains were seized as part of the same effort to spread global disinformation.
Introducing the SecurityTrails API™ PHP Wrapper
An API can be accessed in different ways, via your browser or your command line, but the easiest way is by using an API wrapper. While API access points may change over time, using an API wrapper will ensure the way you call the API always remains the same in your code.
Introducing Regex (RLIKE) Support for Hostnames in SQL Explorer
A couple of months ago we were delighted to share big news about one of the hottest features of SurfaceBrowser™: SQL Explorer. Introducing this new SQL-based feature allowed many of our customers to perform classic SQL-based queries against our massive infosec database and all its host and IP attributes.
Recon Safari #2: Looking at the OSINT Behind Fake US Census Bureau Domains
Just recently, we came across a flash alert released by the FBI concerning 63 domains that were impersonating the US Census Bureau. We were intrigued and wanted to investigate further, so for our second Recon Safari we’re going to look at what OSINT data we can uncover from these spoofed domains.
Recon Safari #1: A Closer Look at Friendemic’s Data Breach
We’ve been having some Friday fun running SecurityTrails Recon Safari on Twitter. Over the past few months, we’ve conducted over 30 successful investigations that were easy to research thanks to SecurityTrails API™ and SurfaceBrowser™. And as a result, Recon Safari began in the form of long Twitter threads, eventually evolving into fun and digestible infographics, ultimately followed by a writeup on our blog.
Threat Detection: Using Cisco’s SecureX with the SecurityTrails Module
Are you a Cisco SecureX user? Conducting cyber threat intelligence campaigns? Now you can integrate the SecurityTrails API™ into your existing SecureX Dashboards, by using a serverless relay running Amazon’s Lambda infrastructure.
October Product Updates: Downloads, Host Page Improvement, Egress traffic, and more.
We are thrilled to announce new features for SurfaceBrowser™, our SecurityTrails API™, and Console.