ZeroGuard’s groundbreaking threat hunting tools enable your company to protect and harden its infrastructure - all from a single portal! Our clients possess the ability to automate threat detection and accelerate investigation with a mere click. Using the powerful combination of public threat intelligence feeds as well as our proprietary intelligence databases, you’ll be able to identify, eliminate and quarantine threats efficiently from your personal ZeroGuard dashboard.
Using our DNS traffic aggregation methods - which have amassed hundreds of TBs of data - we scan and analyze traffic to detect anomalies which are then used to classify potential DNS attacks. By using a blend of advanced machine learning and correlation techniques, our available intelligence can aid in detecting attacks such as DNS Cache Poisoning, DNS Spoofing, Reflection and DNS Amplification.
Our IP address search will quickly correlate domains, providing you with a broad perspective into an IP address’s history.
Seamlessly establish a domain’s IP address by utilizing our Forward DNS search.
Verify that the contents or headers of an email message haven’t been tampered with, and that email sender is actually the owner of the domain that has the DKIM record attached to it.
Detect abusive domains and IPs, matching them against hundreds of public and private reputation feeds. Our platform provides all the best goodies such as advanced search, correlation, etc. right in the web portal and it is capable of delivering threat intelligence directly to your corporate security gateway or firewall.
ZeroGuard’s proprietary technology was developed for use in red teaming, threat hunting and incident response engagements. It provides valuable visibility and event correlation across your entire security environment, thus determining the potential impact of a threat and reducing both detection time and response effort.
ZeroGuard has successfully collected over 5 billion data points across 355 million domains. With a blend of Historic Whois and a continuously updated assemblage, we aim to provide complete domain oversight, giving you access to records which may have been previously buried beneath privacy shields.
We provide detailed information on almost all existing domains, from the highest level of the DNS (Domain Name System) hierarchy all the way down to the smallest registrars.
View full data of existing and expired domains, complete with pivot points and historical mapping, thus allowing accurate correlation, detection and attribution for both new and existing domains.
Change IPs, send email from different providers and be confident that future IP addresses provided by third-party partners will not damage your established and valuable domain/brand reputation.
Tired of crafting cURL requests that are 10 lines long, just to get the information you need on the fly? We got you covered. ZeroGuard offers a full-fledged CLI tool which exposes all the functionality provided by our API, including multiple machine readable and human friendly output formats. So you can either pipe into infinity and beyond or just manually inspect the output. The choice is yours.
┌ Domain: 0-1320feet.com │ ├── Module: Forward DNS │ ├── Status: NOERROR │ └── A Record: 188.8.131.52 │ ├── Module: WHOIS │ ├── Registrar WHOIS Server: whois.godaddy.com │ ├── Registrar URL: http://www.godaddy.com │ ├── Creation Date: 2019-11-04T19:08:08Z │ ├── Registrar: GoDaddy.com, LLC │ ├── Registrant Name: Registration Private │ ├── Registrant Organization: Domains By Proxy, LLC │ ├── Registrant Country: US │ ├── Registrant Email: firstname.lastname@example.org │ ├── Name Server: ns1.namedynamics.net │ └── DNSSEC: Unsigned │ ├── Module: Threat Intelligence │ ├── Domain Reputation: Unknown │ ├── IP Location: Switzerland │ ├── IP Reputation: Neutral │ └── IP Blacklisted: No │ ├── Module: SSL Transparency Logs │ └── Status: No SSL certificate found │ ├ Domain: 00008k.com │ ├── Module: Forward DNS │ ├── Status: NOERROR │ ├── A Record: 184.108.40.206 │ ├── A Record: 220.127.116.11 │ └── A Record: 18.104.22.168 │ ├── Module: WHOIS │ ... results trunctuated ...