Malicious URL and malware data feeds
ThreatTrack is a comprehensive assortment of unique data feeds which are updated on a regular basis.
ThreatTrack is a comprehensive assortment of unique data feeds which are updated on a regular basis.
Request trialThreatTrack is a comprehensive assortment of unique data feeds: Avshare, Linkshare, Threat Track, XML Analysis Reports, Exploit Feed, Border Patrol and PCAP data. These feeds are updated on a regular basis.
Please contact us for sample data.
If you offer a web filtering application or appliance you will incorporate our feeds into your current blacklist. If you are an AV vendor you will benefit substantially from our large array of unique daily malware samples. If you are researching malware or need to complement your in-house research you will benefit from our huge assortment of XML reports produced by GFI SandBox™ internal array. These reports contain behavior analysis results sorted by MD5.
Yes.
We recommend that you cycle this data every few days. Contact us for more detailed usage guidelines.
No, as most malware is not hosted at the same site for long periods of time we do not go back and requalify these URLs.
Between the different feeds we post several thousand new URLs daily.
The Exploits feed is produced by our internal array of honeyclients. These sites may not push malware, but have been qualified malicious by our internal heuristics.
Once you have purchased (or an evaluation agreement has been received), we will give you access to our FTP site, where you can download the information.
Pricing is dependent upon how the data will be incorporated into your product, or used at your site. Please contact ATG@gfi.com to discuss our pricing options further.
For more information please contact ATG at ATG@gfi.com or by calling +1 855 4-GFI-ATG (855-443-4284)