A global leader for internet #intel that enables security practitioners to proactively defend their organization in a constantly evolving threat landscape.
Joined June 2009
- Tweets 7,228
- Following 1,212
- Followers 13,240
- Likes 1,909
2,180 Photos and videos
Jun 5
👔We’ve analyzed a highly sophisticated Adversary-in-the-Middle (AiTM) phishing kit targeting Microsoft 365 & Entra ID. Active since Dec 2025, it smoothly bypasses traditional MFA (SMS, TOTP, Push). Read the investigation here:dti.domaintools.com/security…
#Cybersecurity #MFA #InfoSec
1
169
Jun 5
The DomainTools team is at @SLEUTHCON! Stop by our booth to say hi and grab a "Zero Day" t-shirt (and no, we won't make a sales pitch before you can get a shirt)! #Cybersecurity #SLEUTHCON #InfoSec #Cybercrime
Jun 4
1
1
5
481
Jun 2
This Friday, we'll be at #SLEUTHCON ! Stop by our booth to say hi and enter our raffle to win a Nintendo Switch 2: Choose Your Own Game Bundle!
#SLEUTHCON2026 #Cybersecurity #Infosec
1
4
484
May 21
Our team at DomainTools Investigations (DTI) took a deep dive into the ZionSiphon malware sample(“SCADA_SecurityPatch_v8.4.exe”) that’s been circling in sandboxes since 2025.
Read our investigation here⬇️ dti.domaintools.com/research…
#Cybersecurity#ICS#Malware#InfoSec#DomainTools
1
5
9
521
May 19
We are excited to announce our IP risk and IP hotlist are now available in real-time feeds. These feeds give you access to all IP addresses which can be filtered to show only the most dangerous and currently active infrastructure. Learn more: domaintools.com/blog/increas…
3
2
266
May 13
📰Real Fake News: DTI’s latest research on the Russian-backed Doppelgänger campaigns breaks down the organizational structure and operational distribution model that pushes “fake news” to real news feeds.
Read more: dti.domaintools.com/research…
#Cybersecurity #Infosec #News
9
13
1,587
May 7
The sun is out in Seattle and the April DTI newsletter is live! 📰☀️
@danonsecurity breaks down the DPRK’s modular malware pipelines, the MOIS-linked Handala ecosystem, and the AI Frame campaign. Plus, Ian Campbell's monthly reading list! 📚
Catch up: dti.domaintools.com/newslett…
1
1
382
May 4
Government agencies are advancing Zero Trust, but are they leveraging DNS intelligence to its full potential? DomainTools helps defenders uncover adversary infrastructure before it becomes a threat.
Learn how DomainTools empowers proactive defense here: domaintools.com/proactive-in…
1
2
246
May 1
DTI just released an analysis of the DPRK’s “Contagious Interview” campaign😷.
Read the investigation to learn how the campaign targets software developers through fraudulent job interview processes.⬇️
dti.domaintools.com/security…
#Cybersecurity #InfoSec #NorthKorea #ThreatIntel
4
5
278
Apr 30
Join our webinar: Supercharging the SOC with DomainTools MCP to learn how to supercharge your workflow using DomainTools MCP.
🗓️May 07, 2026
🕜 10:00 AM PT/1:00 PM ET
🔗domaintools.com/webinars/sup…
1
2
129
Apr 28
ICYMI: IrisQL, our new query language, makes it easier than ever to share logic across teams and ticketing systems.
Explore how to optimize your security stack here: domaintools.com/blog/superch…
#ThreatHunting #IrisQL #Infosec #DataScience
1
212
Apr 24
💥Level up your threat hunting with IrisQL, our new query language for deeper, more flexible access to the Iris Investigate database.
Explore the full breakdown and start optimizing your security stack here: domaintools.com/blog/superch…
#ThreatHunting #IrisQL #Infosec #DataScience
158
Apr 23
Deploy clean, update dirty 🧼
DTI identifies a Chrome extension tied to a malicious campaign that publishes utility software that has legitimate functionality but with pre-staged capability for a future malicious update.
Learn more: dti.domaintools.com/security…
#Cybersecurity #2FA
3
4
921
Apr 23
Join us for the DomainTools webinar: Supercharging the SOC with DomainTools MCP.
Key takeaways from the session:
⏱️Instant Context, 🏁 Faster Response, 🔎Enhanced Analysis, 🧠Verifiable Intelligence
🗓️May 07, 2026
🕜 1:00 PM ET
🔗domaintools.com/webinars/sup…
2
156
Apr 21
📍 We’re in Singapore for #BHA2026!
Stop by DomainTools booth # 119 to see how our integrations reduce context-switching and identify evolving threats in real-time.
It's not too late to schedule a chat ➡️domaintools.com/events/black…
#BlackHatAsia #CyberSecurity
157
Apr 17
New DTI Research: The evolution of the MOIS-linked cyber ecosystem (Handala/Homeland Justice)
from the 2022 Albania attacks to the 2026 Stryker incident🛡️🇮🇷
Full research and analysis:dti.domaintools.com/research…
#ThreatIntel #Handala #Cybersecurity #Iran
11
37
3,636
Apr 16
How do you make AI work for you in the SOC?
Join our webinar with DomainTools MCP experts Taylor Wilkes-Pierce, VP of Solutions Engineering, and Dan White, VP of Product Management to learn how the MCP server acts as an instant force multiplier.
🔗domaintools.com/webinars/sup…
2
180
Apr 15
📍 Singapore bound for #BHA2026!
Stop by DomainTools booth # 119 to see how our integrations reduce context-switching and identify evolving threats in real-time.
Don't leave your 2026 strategy to chance. Schedule a chat ➡️ domaintools.com/events/black…
#BlackHatAsia #CyberSecurity
205
Apr 9
Spring is here in Seattle🌷, and the March DTI newsletter is live📰.
In this edition @DanOnSecurity recaps a busy month of research, @neurovagrant's monthly reading list, and where to find us next! dti.domaintools.com/newslett…
#Cybersecurity #Research #DomainTools
1
150
Apr 9
Access DomainTools via the Model Context Protocol (MCP) 🌐
Connect your LLM or MCP enabled platform directly to our data to:
✅ Automate data retrieval and analysis
✅ Reduce context-switching
✅ Investigate at the speed of AI
Click here to learn more: domaintools.ai/mcp-access.
1
1
147